Re: Debian Policy about administrator X.509 certificate stores
- To: Russ Allbery <rra@debian.org>
- Cc: Daniel Kahn Gillmor <dkg@fifthhorseman.net>, Ben Hutchings <ben@decadent.org.uk>, 608719@bugs.debian.org, debian-policy@lists.debian.org, ca-certificates@packages.debian.org, Michael Shuler <michael@pbandjelly.org>
- Subject: Re: Debian Policy about administrator X.509 certificate stores
- From: Bill Allombert <Bill.Allombert@math.u-bordeaux1.fr>
- Date: Mon, 2 Apr 2012 22:08:19 +0200
- Message-id: <[🔎] 20120402200819.GA18895@yellowpig>
- Mail-followup-to: Russ Allbery <rra@debian.org>, Daniel Kahn Gillmor <dkg@fifthhorseman.net>, Ben Hutchings <ben@decadent.org.uk>, 608719@bugs.debian.org, debian-policy@lists.debian.org, ca-certificates@packages.debian.org, Michael Shuler <michael@pbandjelly.org>
- In-reply-to: <[🔎] 87bona84h9.fsf@windlord.stanford.edu>
- References: <20110102232038.30962.75433.reportbug@localhost.localdomain> <1332213241.8043.8.camel@deadeye> <4F681415.90701@fifthhorseman.net> <[🔎] 20120402094922.GE2453@yellowpig> <[🔎] 87bona84h9.fsf@windlord.stanford.edu>
On Mon, Apr 02, 2012 at 09:48:18AM -0700, Russ Allbery wrote:
> Bill Allombert <Bill.Allombert@math.u-bordeaux1.fr> writes:
>
> > Another issue is that no directories is provided for the system
> > administrator to put their local certs. Of course they can use
> > /etc/ssl/certs, but then the certs are drowned by the number.
>
> ca-certificates supports putting local certificates into
> /usr/local/share/ca-certificates, after which they're treated as trusted
> certificates and linked into /etc/ssl/certs similar to how the
> certificates in /usr/share/ca-certificates are handled.
Thanks, I missed that due to bug #666932.
Cheers,
--
Bill. <ballombe@debian.org>
Imagine a large red swirl here.
Reply to: