A group recently published a paper at the 25th Annual Chaos Communication Congress in Berlin, called "MD5 considered harmful today: Creating a rogue CA certificate." This has resulted in a lot of speculation. Here is the paper itself for your consideration and analysis.
I was wondering if it is possible to setup SFTP to go through the internet proxy while connecting to an internet location.
Problem: Client system is behind internet proxy. SFTP to any internet location fails as there is no documented way to configure SFTP to connect to internet locations through... (4 Replies)
SSL_CTX_add_extra_chain_cert(3) OpenSSL SSL_CTX_add_extra_chain_cert(3)NAME
SSL_CTX_add_extra_chain_cert - add certificate to chain
SYNOPSIS
#include <openssl/ssl.h>
long SSL_CTX_add_extra_chain_cert(SSL_CTX ctx, X509 *x509)
DESCRIPTION
SSL_CTX_add_extra_chain_cert() adds the certificate x509 to the certificate chain presented together with the certificate. Several
certificates can be added one after the other.
NOTES
When constructing the certificate chain, the chain will be formed from these certificates explicitly specified. If no chain is specified,
the library will try to complete the chain from the available CA certificates in the trusted CA storage, see
SSL_CTX_load_verify_locations(3).
RETURN VALUES
SSL_CTX_add_extra_chain_cert() returns 1 on success. Check out the error stack to find out the reason for failure otherwise.
SEE ALSO ssl(3), SSL_CTX_use_certificate(3), SSL_CTX_set_client_cert_cb(3), SSL_CTX_load_verify_locations(3)1.0.1e 2013-02-11 SSL_CTX_add_extra_chain_cert(3)