[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Looking for seconds to add the Amazon EC2 public certificate in ca-certificates.

On 2011-08-23, Russ Allbery <rra@debian.org> wrote:
> It seems strange to include a non-CA certificate in ca-certificates; we
> may need a different sort of infrastructure to handle things like this.
> (And I think it would be a bit questionable to trust any certificate
> signed by that certificate in a web browser, say, which is what would
> happen if it were just included in ca-certificates.)

Yep, it's the wrong place.  Furthermore, if we are not allowed to distribute
it, we shouldn't.  And if other open-source projects don't ship it, that's
fairly good clue that we shouldn't, neither.

(You possibly might be able to offer a downloader in contrib.)

Kind regards
Philipp Kern

Reply to: