Bug#790943: Root and local certificate location clash

To: 790943@bugs.debian.org
Subject: Bug#790943: Root and local certificate location clash
From: David Mandelberg <david@mandelberg.org>
Date: Wed, 22 Sep 2021 17:24:12 -0400
Message-id: <[🔎] 440920f1-917f-d906-e77a-3e4feb367541@mandelberg.org>
Reply-to: David Mandelberg <david@mandelberg.org>, 790943@bugs.debian.org
In-reply-to: <55964E56.9030500@pocock.pro>
References: <55964E56.9030500@pocock.pro> <55964E56.9030500@pocock.pro> <55964E56.9030500@pocock.pro>

I just came across this while configuring the CA certs for somesoftware. It would be really nice if this security issue were fixed atsome point. In the meantime, it looks like/etc/ssl/certs/ca-certificates.crt doesn't have the snake oilcertificate (at least on my systems) even though /etc/ssl/cert does havesymlinks to it. So I think it might be a reasonable workaround to pointsoftware at the single file instead of the directory?

Reply to:

Prev by Date: Bug#868861: Mitigation
Next by Date: Bug#296493: Fotowoltaika dla firm
Previous by thread: Bug#868861: Mitigation
Next by thread: Bug#296493: Fotowoltaika dla firm
Index(es):
- Date
- Thread