Date: Thu, 24 Mar 2022 08:50:51 +0000
From: bugzilla-noreply@freebsd.org
To: ports-bugs@FreeBSD.org
Subject: [Bug 262755] security/ca_root_nss: can no longer modify ${PREFIX}/etc/ssl/cert.pem
Message-ID: <bug-262755-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D262755 Bug ID: 262755 Summary: security/ca_root_nss: can no longer modify ${PREFIX}/etc/ssl/cert.pem Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: ports-secteam@FreeBSD.org Reporter: franco@opnsense.org Assignee: ports-secteam@FreeBSD.org Flags: maintainer-feedback?(ports-secteam@FreeBSD.org) Since this cert.pem like /etc/ssl/cert.pem is used by services it must be adjustable like it previously was for @sample use. Now the file is registe= red by the package and ends up being rewritten on upgrades. ETCSYMLINK helps to edit contents of /etc/ssl/cert.pem still, but for ${PREFIX}/etc/ssl/cert.pem this is no longer possible. >From the change in https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D2285= 50 I can't really agree on the whole assumption made for ETCSYMLINK option turned off in this regard. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-262755-7788>