On 2014-05-28, Kevin Chadwick <ma1l1i...@yahoo.co.uk> wrote: > Using xombrero in cert_warn mode with a ca file I get a yellow bar > which means untrusted on > > ewf.companieshouse.gov.uk > > but firefox shows a green bar > > OpenSSL output at the bottom. > > I figured OK so the pem bundles differ and I am not too surprised where > companies house is concerned.
They are just using a geotrust cert, the default /etc/ssl/cert.pem is enough - you can test this with lynx/curl/recent ftp(1). Probably worth reporting upstream..
