[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1004586: debian-edu-config: Use /etc/ssl/certs/ca-certificates.crt as tls_cacertfile in /etc/nslcd.conf for Debian Edu 12



Package: debian-edu-config
Version: 2.12.15
Severity: normal

In /etc/nslcd.conf, we still use /etc/ssl/certs/debian-edu-server.crt as tls_cacertfile. The debian-edu-server.crt file has been signed against the Debian-Edu_rootCA.crt file and Debian-Edu_rootCA.crt is included in every client's /etc/ssl/certs/ca-certiticates.crt file since buster.

So, we should switch to having /etc/ssl/certs/ca-certificates.crt in the tls_cacert field of /etc/nslcd.conf any time soon for Debian Edu bookworm (not bullseye).

Switching over means that we will drop compatibility with TJENER's (Debian Edu mainserver) based on Debian Edu stretch and earlier.

Mike
--

DAS-NETZWERKTEAM
c\o Technik- und Ökologiezentrum Eckernförde
Mike Gabriel, Marienthaler Str. 17, 24340 Eckernförde
mobile: +49 (1520) 1976 148
landline: +49 (4351) 850 8940

GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22  0782 9AF4 6B30 2577 1B31
mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

Attachment: pgp9wt1GDOgf7.pgp
Description: Digitale PGP-Signatur


Reply to: