[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1004586: debian-edu-config: Use /etc/ssl/certs/ca-certificates.crt as tls_cacertfile in /etc/nslcd.conf for Debian Edu 12

Control: reassign -1 debian-edu-install
Control: found -1 2.12.3

On  So 30 Jan 2022 20:34:26 CET, Mike Gabriel wrote:

Package: debian-edu-config
Version: 2.12.15
Severity: normal

In /etc/nslcd.conf, we still use /etc/ssl/certs/debian-edu-server.crt as tls_cacertfile. The debian-edu-server.crt file has been signed against the Debian-Edu_rootCA.crt file and Debian-Edu_rootCA.crt is included in every client's /etc/ssl/certs/ca-certiticates.crt file since buster.

So, we should switch to having /etc/ssl/certs/ca-certificates.crt in the tls_cacert field of /etc/nslcd.conf any time soon for Debian Edu bookworm (not bullseye).

Switching over means that we will drop compatibility with TJENER's (Debian Edu mainserver) based on Debian Edu stretch and earlier.

I just realized the preseeding is happening in debian-edu-install, thus reassigning...


c\o Technik- und Ökologiezentrum Eckernförde
Mike Gabriel, Marienthaler Str. 17, 24340 Eckernförde
mobile: +49 (1520) 1976 148
landline: +49 (4351) 850 8940

GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22  0782 9AF4 6B30 2577 1B31
mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

Attachment: pgp0f6F5e6gHf.pgp
Description: Digitale PGP-Signatur

Reply to: