Re: Looking for seconds to add the Amazon EC2 public certificate in ca-certificates.
On 2011-08-23, Russ Allbery <firstname.lastname@example.org> wrote:
> It seems strange to include a non-CA certificate in ca-certificates; we
> may need a different sort of infrastructure to handle things like this.
> (And I think it would be a bit questionable to trust any certificate
> signed by that certificate in a web browser, say, which is what would
> happen if it were just included in ca-certificates.)
Yep, it's the wrong place. Furthermore, if we are not allowed to distribute
it, we shouldn't. And if other open-source projects don't ship it, that's
fairly good clue that we shouldn't, neither.
(You possibly might be able to offer a downloader in contrib.)