![]() ![]() Now look for the line that has this number: Your copy of the PLE may be located in a different directory, and if so, you'll need to change the path appropriately. This gives the Property List Editor the necessary privileges to be able to save the file once you're done editing. Sudo "/Developer/Applications/Utilities/Property List Editor.app/Contents/MacOS/Property List Editor" /System/Library/Keychains/ist To edit that file you need to be root, and the simplest way I found was to enter the following command in a terminal: Sudo security delete-certificate -Z 101DFA3FD50BCBBB9BB5600C1955A41AF4733A04 /System/Library/Keychains/SystemRootCertificates.keychainĪlso, if you want to be completely safe, you should remove DigiNotar's Extended Validation Certificate listing from ist. ![]() Sudo security delete-certificate -Z 59AF82799186C7B47507CBCF035746EB04DDB716 /System/Library/Keychains/SystemRootCertificates.keychain Sudo security delete-certificate -Z C060ED44CBD881BD0EF86C0BA287DDCF8167478C /System/Library/Keychains/SystemRootCertificates.keychain This works even when attempting to untrust or delete the certificates via Keychain Access does not: If you're still using Leopard or earlier and wish to remove the compromised certificates, you can do so manually by issuing the commands below in terminal (you need an admin account). My hint is better, since it removes ALL the compromised certificates, and works when using Keychain Access does not:
0 Comments
Leave a Reply. |