new certificates using apple-pki-bundle
Eric Gallager
egall at gwmail.gwu.edu
Wed May 22 14:52:40 UTC 2024
On Tue, May 21, 2024 at 4:37 AM Riccardo Mottola via macports-users
<macports-users at lists.macports.org> wrote:
>
> Hi,
>
> Nils Breunese wrote:
> >> what certificates do you use with apple-pki-bundle? I got those from curl (cacert.pem from https://curl.se/docs/caextract.html)
> >> On old Macs in Safari even a simple page like wikipedia is not loadable, I thought it is a certificate issue, but it did not help. Firefox has its own.
> >> Perhaps it is enforcing SSL 1.3 and I am busted?
> > What version of macOS and Safari are you using? According to sslscan en.wikipedia.org supports TLS 1.2 and 1.3.
>
> MacOS 10.9 and Safari 9.1.3
>
> I suppose that installed certificates should be available to all apps,
> if I did it right, the new certificates should be available system wide,
> right? Not just macports apps.
> So curl, wget..but also Safari or similar.
>
I think that the `certsync` port (alternative to curl-ca-bundle) is
supposed to help with this...
>
> Riccardo
More information about the macports-users
mailing list