Bug#790943: Root and local certificate location clash

To: 790943@bugs.debian.org, Daniel Pocock <daniel@pocock.pro>
Subject: Bug#790943: Root and local certificate location clash
From: Paul Wise <pabs@debian.org>
Date: Fri, 03 Jul 2015 17:22:37 +0800
Message-id: <[🔎] 1435915357.22465.9.camel@debian.org>
Reply-to: Paul Wise <pabs@debian.org>, 790943@bugs.debian.org
In-reply-to: <[🔎] 55964E56.9030500@pocock.pro>
References: <[🔎] 55964E56.9030500@pocock.pro>

On Fri, 03 Jul 2015 10:56:54 +0200 Daniel Pocock wrote:

> Some other packages refer to /etc/ssl/certs as a directory of trusted
> roots.  E.g. according to this page: https://wiki.debian.org/ServicesSSL
> the whole directory was trusted by wget in wheezy but not in jessie.

You have misunderstood the wiki page. The change for wget in jessie is
that it now ignores non-CA certs in /etc/ssl/certs for verification
purposes, whereas in wheezy you could also put individual service certs
there too and avoid relying on the SSL mafia.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

References:
- Bug#790943: Root and local certificate location clash
  - From: Daniel Pocock <daniel@pocock.pro>

Prev by Date: Bug#790943: Root and local certificate location clash
Next by Date: Processed: Re: Bug#790943: Root and local certificate location clash
Previous by thread: Bug#790943: Root and local certificate location clash
Next by thread: Bug#790943: Root and local certificate location clash
Index(es):
- Date
- Thread