simple don't trust anyone else's CA
All my servers have just one CA cert installed, mine. Not really practical for many, but run a local repo and just step gingerly round the cluster-fuck.
All my servers have just one CA cert installed, mine. Not really practical for many, but run a local repo and just step gingerly round the cluster-fuck.