Need assistance confirming how to update the root CAs that Bro uses for the ssl.log. When list of websites are visited from the logs that have used a self-signed cert but within that list a number of sites are actually trusted. I found some documentation that states you need to take a DER formatted version of your root public key and convert it to Bro's hex string, etc.
Could you confirm the steps to take to resolve this specific issue? I am trying to ensure there isn't a specific location in a local config that will allow me to set the path. Please advise if you need any additional information.
Running on RHEL 6.5