Force Chrome to accept any SSL certificate regardless of who it was signed by? [closed]

Question

EDIT: As suggested, this question has been moved to SuperUser, but was closed with no activity ;-( The best answer I found was to pass a command line option to Chrome to ignore all certificate errors.

https://superuser.com/questions/808413/force-chrome-to-accept-any-ssl-certificate-regardless-of-who-it-was-signed-by

Original Question:

Is it possible to get Chrome to trust an SSL certificate, regardless of who it was signed by?

I've seen this discussion on getting Chrome to accept self signed certificates here on StackOverflow, but it doesn't seem to work in all cases - It appears it's failing when the certificate isn't self signed, but the authority isn't known for some reason.

For my development purposes, I want to trust these certificates no matter who signed them. Is this possible?

On on a Mac, but appreciate any responses.... Thanks!

Answer 1

Like written at the discussion you referenced you can use the option --ignore-certificate-errors to make chrome ignore any certificate errors. I've tried this successfully (on Linux) with expired certificates and certificates with an unknown CA. Be sure to either close any other chrome browsers or use a separate data directory specified with option --user-data-dir=....

Another option would be to set up a man-in-the-middle proxy like mitmproxy, squid with SSL bumping or fiddler and let these accept all certificates and sign them with their own CA, which you then can accept as a trusted CA inside the browser.