[Bro-Dev] [JIRA] (BIT-1214) Updating Root CAs used for ssl.log

Johanna Amann (JIRA) jira at bro-tracker.atlassian.net
Mon Jul 14 00:05:09 PDT 2014

     [ https://bro-tracker.atlassian.net/browse/BIT-1214?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Johanna Amann updated BIT-1214:
    Resolution: Solved
        Status: Closed  (was: Open)

> Updating Root CAs used for ssl.log
> ----------------------------------
>                 Key: BIT-1214
>                 URL: https://bro-tracker.atlassian.net/browse/BIT-1214
>             Project: Bro Issue Tracker
>          Issue Type: Task
>          Components: Bro
>         Environment: Running on RHEL 6.5
>            Reporter: Robert W
>            Assignee: Johanna Amann
>              Labels: logging
> Need assistance confirming how to update the root CAs that Bro uses for the ssl.log. When list of websites are visited from the logs that have used a self-signed cert but within that list a number of sites are actually trusted. I found some documentation that states you need to take a DER formatted version of your root public key and convert it to Bro's hex string, etc. 
> http://comments.gmane.org/gmane.comp.security.detection.bro/4117
> Could you confirm the steps to take to resolve this specific issue? I am trying to ensure there isn't a specific location in a local config that will allow me to set the path. Please advise if you need any additional information. 

This message was sent by Atlassian JIRA

More information about the bro-dev mailing list