Removes an embedded RootCA bundle that hasn't been necessary for quite a while. All Papertrail syslog endpoints provide full certificate chains that validate in any modern OS.
Even if this bundle was needed for some operating system, the current logic wouldn't be effective because it only kicks in for logs.papertrailapp.com, which only accounts for ~15% of customer port assignments these days. We haven't heard any complaints about the other six destinations, so it's safe to assume they've all been working fine without it.
Tested to confirm that I can still send to various Papertrail destinations afterwards. Also used openssl s_client -showcerts to confirm all of Papertrail's destinations present the same certificate chain.
Removes an embedded RootCA bundle that hasn't been necessary for quite a while. All Papertrail syslog endpoints provide full certificate chains that validate in any modern OS.
Even if this bundle was needed for some operating system, the current logic wouldn't be effective because it only kicks in for
logs.papertrailapp.com, which only accounts for ~15% of customer port assignments these days. We haven't heard any complaints about the other six destinations, so it's safe to assume they've all been working fine without it.Tested to confirm that I can still send to various Papertrail destinations afterwards. Also used
openssl s_client -showcertsto confirm all of Papertrail's destinations present the same certificate chain.