how to add a private ssl ca cert to the system on linux

if one has generated a private CA certificate for ssl, it can become tedious to tell various programs to accept certificates created by that authority. the ca certificate can be added to the system ssl certificate store to make life simpler. the following must be done by root, of course.

for the following, assume the ca certificate is named myca.crt. btw, the file extension must be pem or crt for the openssl utility c_rehash(1).

cp myca.crt /etc/ssl/certs
c_rehash /etc/ssl/certs
# test- retrieve something via ssl
curl https:_example.com/somefile