diff --git a/source/_posts/trusting-the-man-in-the-middle.md b/source/_posts/trusting-the-man-in-the-middle.md
new file mode 100644
index 0000000..c81c0e4
--- /dev/null
+++ b/source/_posts/trusting-the-man-in-the-middle.md
@@ -0,0 +1,30 @@
+---
+title: Trusting the man in the middle
+date: '2018-07-02T12:51:13-05:00'
+tags:
+  - tls ssl certificate
+---
+### Python
+
+Specifically, PIP will need to be told about the CA bundle you want to use. There are many ways:
+
+- Via the command line argument
+  ```
+   pip --cert path/to/cert install somepackagename
+  ```
+- Via pip's configuration
+  ```
+   pip config --global set global.cert path/to/cert
+  ```
+- Via an environment variable named `PIP_CERT`
+
+Python itself, via requests your application makes, depends on the module you are using. A common one is the `requests` module. Set the `REQUESTS_CA_BUNDLE` to the path of your ca.pem file and you are good to go. Remember to reload the environment/profile when you do that though.
+   
+> Using Azure's Python CLI?
+> C:\Program Files (x86)\Microsoft SDKs\Azure\CLI2\python.exe
+
+### Node (npm is later)
+
+Set the [NODE_EXTRA_CA_CERTS](https://nodejs.org/api/cli.html#cli_node_extra_ca_certs_file) environment variable to the path of your cert file. Reload the environment and you should be good to go.
+
+Node comes prepackaged with a set of CA certs to trust, like the name above implies, it extends that list of CA certs to include the ones you specify.