Date: Sat, 27 Dec 2014 19:28:59 +0100 From: Jan Beich <jbeich@vfemail.net> To: Larry Rosenman <ler@lerctr.org> Cc: gecko@FreeBSD.org Subject: Re: CA Certs and Boinc:World Community Grid: bad cert? Message-ID: <3881-gd5g-wny@vfemail.net> References: <c5a2dfb9079cd279b79da5cc22c869f1@thebighonker.lerctr.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Larry Rosenman <ler@lerctr.org> writes: > I noticed that my FreeBSD boxes were not running WCG tasks any more and > while > investigating that found that WCG's root CA cert is no longer in the > bundle. > > linked are the ca's from their install (which work), and a .bu version > from > the current FreeBSD ca_root_nss port which does NOT. > > Can we investigate which cert needs to be re-added? > > Thanks! > > http://www.lerctr.org/~ler/ca-root-nss.crt > http://www.lerctr.org/~ler/ca-root-nss.crt.bu gecko@ only keeps security/ca_root_nss port up to date. Any new or old CA certificates have to be vetted by Mozilla, ports-secteam@ or already being included by other Unix-like distributions. Related: ports/160387 and why CAcert.org was removed. Besides, adding extra certs to ca_root_nss port won't affect NSS consumers until we have a port for nss-pem. ------------------------------------------------- VFEmail.net - http://www.vfemail.net ONLY AT VFEmail! - Use our Metadata Mitigator to keep your email out of the NSA's hands! $24.95 ONETIME Lifetime accounts with Privacy Features! 15GB disk! No bandwidth quotas! Commercial and Bulk Mail Options!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3881-gd5g-wny>