On a fresh install of Leopard when I look at the root certificates this is what I see when I order them by expiration date.
I find the names, dates, and number of certificates suspicious. Is this all normal?
Are these root certificates suspicious
certificatekeychainSecurity
Related Question
- MacOS – the root CAs stored on OS X
- MacOS – Extract Installer Package Signing Certificates from xip archive
- MacOS – I have several hundred expired certificates starting with com.apple.idms.appleid.prd. What are they and are they safe to delete
- How to replace missing root and intermediate certificates in Mac OS X v10.8
- Why is the Turkish Government in the computer
- Why are these corporate certificates pre-installed and is it safe to delete/“Never Trust” most/all of them
- MacOS – the macOS equivalent of Windows certificate store names
Best Answer
Yes the installed certificates are valid, however I would advise updating to the latest version of Leopard and make sure that the compromised Diginotar certificates are uninstalled: This link at ps Enable provides an easy method for this.
On Root Certificates, they are by their nature long lived since they are the "Master" certificates and having them expire too often would cause issues with SSL certificate chain's world-wide.