Hacker News new | ask | show | jobs
by JoachimS 4134 days ago
The OSX trusted root can be viewed with the Keychain Access tool. I've removed a lot of CAs I don't trust.

There is also (at least one) a project that tracks changes in trust stores in OS:es, Java, browsers:

https://github.com/kirei/catt

(I am one of the authors.)
1 comments
mrmondo 4134 days ago
Yeah - total band-aid fix for a broken system (CA) but here's how to remove them for anyone interested: https://github.com/sammcj/delete-unknown-root-ca
link
JoachimS 4134 days ago
Band-aid gives relief locally and temporaily. Add a new band-aid when the old one does not stick anymore.

If band-aid is what we got before the system is fixed, then that is what we can use.

link