Hi, this might be a little bit off-topic but at least in my case it touches the curl-library: I am using the openssl-built curl library in a application under windows and in order to get it use the latest certificates, I add the certificates from the windows trust stores manually to the open ssl context. Some application servers the application uses get their certificates from Letsencrypt and I notice that, in a newly installed Windows installation, my application would not trust them unless I open the same (HTTPS) site with the Internet Explorer. It seems as if there is a magic download of the root certificates happening when the Internet Explorer visits a SSL site with an unknown root certificate. The question is: Is anyone aware of how to emulate this behaviour with the Win32 API without using the Internet Explorer? I searched through the net and did not find any information on what is really going on there.
Thanks in advance, David Weisgerber
------------------------------------------------------------------- Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library Etiquette: https://curl.haxx.se/mail/etiquette.html
