Hi - > I am simply interested in knowing what is done for outgoing https > connections to be authenticated. What would it take to use the trust > roots for validating the server certificates?
OK, I misunderstood. Certificate-authority certificates in the trust root (compiled-in directories) serve to verify the signature chain on a certificate that a server sends to a client. libcurl already automatically does this verification, as does apprx. every other tls/ssl client in a distro. - FChE
