Hynek Schlawack (via Kyle Sluder): Apple ships a patched version of OpenSSL with OS X. If no precautions are taken, their changes rob you of the power to choose your trusted CAs, and break the semantics of a callback that can be used for custom checks and verifications in client software. […] The reason for … Continue reading Apple OpenSSL Verification Surprises