Re: bendel.debian.org untrusted certificate

To: debian-user@lists.debian.org
Subject: Re: bendel.debian.org untrusted certificate
From: Michel Verdier <mv524@free.fr>
Date: Sun, 12 Mar 2023 08:31:35 +0100
Message-id: <[🔎] 87ilf6h1t4.fsf@free.fr>
In-reply-to: <[🔎] e0ee4827-04f7-f4ea-709b-e5621ae4124d@ardley.org> (Jeremy Ardley's message of "Sun, 12 Mar 2023 12:50:13 +0800")
References: <[🔎] 6a659af3-2cbd-561b-eba0-8969a7e10f1e@ardley.org> <[🔎] e304e3e0-9df4-1a47-c04a-75745c146b87@ardley.org> <[🔎] e0ee4827-04f7-f4ea-709b-e5621ae4124d@ardley.org>

Le 12 mars 2023 Jeremy Ardley a écrit :

> Slightly off topic I found these files. They seem to not be used as they
> aren't links to /usr/share/ca-certificates/mozilla/*
[...]
>
> is it safe to remove them?

You can do
c_rehash /etc/ssl/certs/
to clean hash links (*.0 and *.1 files)

snakeoil is the self signed debian default certificate used when
installing various packages.
For others I don't know. It seems you installed something related to
these files (NetLock, Ubuntu, etc). You should check them manually to see
if you can trust them. If not remove them. To check look at:
openssl x509 -text -in <filename>

Reply to:

References:
- bendel.debian.org untrusted certificate
  - From: jeremy ardley <jeremy@ardley.org>
- Re: bendel.debian.org untrusted certificate
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: bendel.debian.org untrusted certificate
  - From: Jeremy Ardley <jeremy@ardley.org>

Prev by Date: Re: home server for email box
Next by Date: missing wireless tools
Previous by thread: Re: bendel.debian.org untrusted certificate
Next by thread: SIP servers.
Index(es):
- Date
- Thread