Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable

To: Emmanuel Bourg <ebourg@apache.org>
Cc: Debian Java <debian-java@lists.debian.org>, Matthias Klose <doko@debian.org>
Subject: Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable
From: Thorsten Glaser <t.glaser@tarent.de>
Date: Sat, 30 Sep 2017 17:09:30 +0200 (CEST)
Message-id: <[🔎] alpine.DEB.2.20.1709301708360.22179@tglase.lan.tarent.de>
In-reply-to: <[🔎] b506ee88-abf3-ed85-0981-6702147051ce@apache.org>
References: <E1dy5kN-0003iW-PH@fasolo.debian.org> <[🔎] b506ee88-abf3-ed85-0981-6702147051ce@apache.org>

On Sat, 30 Sep 2017, Emmanuel Bourg wrote:

> Are you suggesting that we should drop ca-certificates-java and just
> rely on the root certificates from OpenJDK instead? I would welcome this
> simplification, the certificates in OpenJDK are frequently updated
> anyway, and that would improve the consistency with the Oracle JDK.

IMHO consistency within Debian is *much* more important.

I would be seriously fucked off if I could connect to a host
using something like wget but not a Java™ application, after
installing the custom CA into /etc/ssl/certs or similar, or
even with the defaults.

bye,
//mirabilos
-- 
tarent solutions GmbH
Rochusstraße 2-4, D-53123 Bonn • http://www.tarent.de/
Tel: +49 228 54881-393 • Fax: +49 228 54881-235
HRB 5168 (AG Bonn) • USt-ID (VAT): DE122264941
Geschäftsführer: Dr. Stefan Barth, Kai Ebenrett, Boris Esser, Alexander Steeg

Reply to:

References:
- Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable
  - From: Emmanuel Bourg <ebourg@apache.org>

Prev by Date: Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable
Next by Date: Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable
Previous by thread: Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable
Next by thread: Re: ca-certificates-java_20170930_source.changes ACCEPTED into unstable
Index(es):
- Date
- Thread