Hey guys, I am just wondering if there is an easy way to manage SSL certificates in linux or if I need to just manually add the certificate to each of my browsers.
I am running a virtual machine on the computer so adding it to browsers isn't going to work fantastically, and I am just wondering if there is a depository in the OS that I can add the certificate to.
I am using Ubuntu 14.10 with Gnome shell, Thanks a lot guys.
Should be able to add them to /use/local/share/ca-certificates might want to look up your distro documentation. But I'd also question why are you doing this? Is there a reason your wanting to explicitly trust an untrustworthy certificate?
Do you want to store your own certificates (=private keys) (e.g. when you're running a server) or do want to store the certificates of other websites (=public keys)?
For the first one I'd recommend the following:
sudo su
mkdir /etc/ssl/your-sub-dir/ # create directory for your SSL keys
cp ssl-cert /etc/ssl/your-sub-dir/ # copy all your SSL keys, DH params etc. to the directory
chmod 400 -R /etc/ssl/your-sub-dir/ # only root can read the directory
chattr +i -R /etc/ssl/your-sub-dir/ # even root can't change the files now (revert with chattr -i)
Ok thanks, I'll give that a shot. As for your question for why I would want to run these certificates, its for school. On the school network you need the certificates to access certain websites. So I would rather not have the certificate, but I'm at least running a nicer OS (imo) than every other kid in the school now. :) And I am learning a bunch of new things (like this :P)