Bug#558283: nss: please add a certificate package
Mike Hommey
mh at glandium.org
Fri Nov 27 16:11:53 UTC 2009
On Fri, Nov 27, 2009 at 04:53:48PM +0100, Philipp Kern wrote:
> Package: nss
> Version: 3.12.4-1
> Severity: wishlist
>
> Hi Mike,
>
> attached is a proposal for a ca-certificates-nss package. I had initially
> thought to name it ca-certificates-mozilla, but considering that we add some
> certificates through patches it looked a bit like a lie to do it like this.
>
> Currently I fetch certdata.txt myself into the ca-certificates package and
> then explode it into many files. I feel that it should instead be done in
> the data source directly. Thus I copied the script to debian/.
>
> I implemented a blacklist because the way we organize certificates in the
> file system does not support negative trust values, thus the one currently
> in certdata.txt is blocked from the export.
>
> I would revamp ca-certificates in a similar way with subpackages putting
> certificates into /usr/share/ca-certificates/<suffix> and I then intend to
> recommend ca-certificates-nss, which should provide us with the basic set
> almost everyone needs.
>
> Any input on this would be cool. :-)
Well, first, thanks. But the attachment is missing ;)
Secondly, I really don't know... I have to think about it.
Mike
More information about the pkg-mozilla-maintainers
mailing list