Bug#309564: cacert certificate
Mike Hommey
mh at glandium.org
Fri Jul 11 14:18:46 UTC 2008
On Fri, Jul 11, 2008 at 04:12:23PM +0200, Alexander Sack <asac at debian.org> wrote:
> On Fri, Jul 11, 2008 at 03:51:53PM +0200, Mike Hommey wrote:
> > Why would someone need to opt-out ? Anyways, you *can* opt-out without
> > needing an alternate security module.
> > Edit > Preferences > Advanced > Encryption > View Certificates >
> > Authorities > Edit > This certificate can identify $category
>
> OK, thats good enough. Are there other authorities we want to add or
> just cacert?
Ideally, I would say anything that is in ca-certificates. I would even go
as far as to say that anything that is not in ca-certificates that is in nss
(but i don't think there are any) should go away.
Now, realistically, adding CACert should be enough for Lenny. Maybe SPI,
could be worth, too.
Mike
More information about the pkg-mozilla-maintainers
mailing list