[Help-gnutls] adding trusted CAs

Rainer Gerhards rgerhards at gmail.com
Wed May 21 11:58:32 CEST 2008

Hi all,

this is probably an exceptionally dumb question, but... ;)

I would like to ship a number of trusted roots with the default
rsyslog install - much like web browsers do. The idea is that I would
like to be able to automatically verify certificates that have been
obtained by one of those well-known CA.

Question now: how do I do that? Do I simply add the certificate blocks
into a single big .pem file? Or do I need to supply multiple files.

Also (the probably really dumb one ;)): how do I obtain these
certificates? Ask the CAs? Or export them from the browser (I've not
found this option in Firefox).

Advise is appreciated.


More information about the Gnutls-help mailing list