From owner-freebsd-security@FreeBSD.ORG  Fri Apr  1 18:45:13 2011
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 06F67106566B
	for <freebsd-security@freebsd.org>;
	Fri,  1 Apr 2011 18:45:13 +0000 (UTC)
	(envelope-from leccine@gmail.com)
Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com
	[209.85.214.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 878548FC17
	for <freebsd-security@freebsd.org>;
	Fri,  1 Apr 2011 18:45:12 +0000 (UTC)
Received: by bwz12 with SMTP id 12so3341814bwz.13
	for <freebsd-security@freebsd.org>;
	Fri, 01 Apr 2011 11:45:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:cc:content-type;
	bh=SW1gXQ1jZM0J0dJy3EAxTUY8ooNm1J9x43ah6somBP8=;
	b=wbdICiJ5FlmXN5XT4HWBnQvCP1qT6Bzo6tanpMuAO9gdILI2XyH3JKXzmFdQv8D3yM
	e9bhhnBf9390KEP+djGv/3ghadnDa+YoTJJEKfXtQZbOTn7CtIRp7U+sBa2j8JmXEFVE
	FMS0ovhJN45jfkdq1GCsTYYrlHdsStXkNDnsA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type;
	b=kyzxLbHFfaiNH/BFLmeYFt1pMV2k9oXql2eYNYue7MJjC1zTgyvLAn0RuSumgiVf2B
	4VtJXU7bVRzlFSQjV4CDWG04QAt/XH+w8vWMRYgCrGdcfBi6IvxSqkiPxMMWLmiMSZSs
	ieDaCmxN86Lehsgj+Z5w+M7guiDZW2kx+eFS4=
MIME-Version: 1.0
Received: by 10.204.151.207 with SMTP id d15mr642812bkw.123.1301683511383;
	Fri, 01 Apr 2011 11:45:11 -0700 (PDT)
Received: by 10.204.62.13 with HTTP; Fri, 1 Apr 2011 11:45:11 -0700 (PDT)
In-Reply-To: <4D95ECAA.20406@obluda.cz>
References: <AANLkTin_zZgHRg7QtEwH2V8WOd=nvBcKdYvJkshGCt-R@mail.gmail.com>
	<4D95ECAA.20406@obluda.cz>
Date: Fri, 1 Apr 2011 19:45:11 +0100
Message-ID: <AANLkTingqP-3jqEisT_R5BBKO81mRJk7OX5FUL=assz9@mail.gmail.com>
From: =?UTF-8?Q?Istv=C3=A1n?= <leccine@gmail.com>
To: Dan Lukes <dan@obluda.cz>
Content-Type: text/plain; charset=UTF-8
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-security <freebsd-security@freebsd.org>
Subject: Re: SSL is broken on FreeBSD
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Apr 2011 18:45:13 -0000

>
>
> Only you personally can decide what CA is "trustful CA" for you.
>
>
cool, i decided I need everything what I have on windows or on J random
operating system with firefox. I install the corresponding package which is
broken and therefore, so I can't verify if somebody i doing a MITM while I
am shopping on Amazon. Massive win!

I understand you do not care about usability. It is viable attitude in many
opensource communities including FreeBSD.

Thank you anyway. I am going to copy that file from Linux ;)

Thank you!