Date: Thu, 03 Jul 2014 15:30:16 +0000 From: "Poul-Henning Kamp" <phk@phk.freebsd.dk> To: Eitan Adler <lists@eitanadler.com> Cc: d@delphij.net, Ben Laurie <benl@freebsd.org>, gecko@freebsd.org, Bryan Drewery <bdrewery@freebsd.org>, freebsd-security@freebsd.org, Jung-uk Kim <jkim@freebsd.org>, FreeBSD Ports Management Team <portmgr@freebsd.org>, re <re@freebsd.org>, Jonathan Anderson <jonathan@freebsd.org> Subject: Re: RFC: Proposal: Install a /etc/ssl/cert.pem by default? Message-ID: <99544.1404401416@critter.freebsd.dk> In-Reply-To: <CAF6rxgmsoJCnCpnGKUXe0jnPEgGNm3BB_SF73vLOkK5X9pOoPw@mail.gmail.com> References: <53B499B1.4090003@delphij.net> <53B4B7FB.6070407@FreeBSD.org> <53B56F49.7030109@FreeBSD.org> <CAF6rxgmsoJCnCpnGKUXe0jnPEgGNm3BB_SF73vLOkK5X9pOoPw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <CAF6rxgmsoJCnCpnGKUXe0jnPEgGNm3BB_SF73vLOkK5X9pOoPw@mail.gmail= .com>, Eitan Adler writes: >On 3 July 2014 07:57, Jonathan Anderson <jonathan@freebsd.org> wrote: >> Just my $.02, but if the FreeBSD project is to maintain a >> ca-root-freebsd.pem, I think it should have one certificate in it: the = root >> FreeBSD Project cert. Beyond that, I'm not willing to vouch for the >> trustworthiness of any CA, and I don't think the Project should either. I think this makes a lot of sense: FreeBSD is not in the trust-business and have no benefit from trying to enter it. -- = Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe = Never attribute to malice what can adequately be explained by incompetence= .
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?99544.1404401416>