On Tue, Nov 26, 2013 at 4:48 PM, Bruce Momjian <bruce@xxxxxxxxxx> wrote:
Right. I know of no mechanism to verify a certificate via a public CA
through SSL. Browsers have a list of trusted certificates, but SSL
alone doesn't, as far as I know.
SSL as a library/protocol has mechanisms to verify the certificates. The list of certificates that are trusted is left to the implementation. Most people install the mozilla cert bundle and use that.
