Updating Root CAs used for ssl.log

Description

Need assistance confirming how to update the root CAs that Bro uses for the ssl.log. When list of websites are visited from the logs that have used a self-signed cert but within that list a number of sites are actually trusted. I found some documentation that states you need to take a DER formatted version of your root public key and convert it to Bro's hex string, etc.

http://comments.gmane.org/gmane.comp.security.detection.bro/4117

Could you confirm the steps to take to resolve this specific issue? I am trying to ensure there isn't a specific location in a local config that will allow me to set the path. Please advise if you need any additional information.

Environment

Running on RHEL 6.5

Assignee

Johanna Amann

Reporter

Robert W

Labels

External issue ID

None

Components

Priority

Normal
Configure