[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

server certificates/key pairs and CA directories

Hi all,

There has been some discussion in the past about CA certificates and
server certificate/key locations in /etc

I'd like to ensure that the RTC Quick Start Guide[1] is giving people
accurate instructions about where to create their private key and server
certificate files on a Debian host.

I couldn't find a specific policy on how it is currently supposed to be
managed, although there are a few proposals on the wiki:


I looked at the package ssl-cert to try and understand and there I found
that it is using /etc/ssl/certs for server certs while other packages
trust that directory as a store of root certs, I opened a bug[2] for that.

Can anybody refer me to any document that describes the current
situation, whether it is in a policy document, wiki or mailing list archive?

Is anybody currently working on improving this situation?



1. http://rtcquickstart.org/guide/multi/tls-install-certificate.html
2. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=790943

Reply to: