Bug#597537: Looking for seconds to add the Amazon EC2 public certificate in ca-certificates.
Le Wed, Aug 24, 2011 at 03:06:11PM +0000, Philipp Kern a écrit :
> On 2011-08-23, Russ Allbery <rra@debian.org> wrote:
> > It seems strange to include a non-CA certificate in ca-certificates; we
> > may need a different sort of infrastructure to handle things like this.
> > (And I think it would be a bit questionable to trust any certificate
> > signed by that certificate in a web browser, say, which is what would
> > happen if it were just included in ca-certificates.)
>
> Yep, it's the wrong place. Furthermore, if we are not allowed to distribute
> it, we shouldn't. And if other open-source projects don't ship it, that's
> fairly good clue that we shouldn't, neither.
Thanks everybody who explained better the usage of this certificate. As
others, I now think that a good place for it would be in a future cloud support
package, for instance cloud-utils (http://bugs.debian.org/622946).
There is no indication that the certificate is not redistributable, and there
is at least one other project that redistributes it (Ubuntu, in the euca2ools
package).
Have a nice day,
--
Charles Plessy
Tsurumi, Kanagawa, Japan
Reply to: