On 1/1/13 2:51 AM, Dirkjan Ochtman wrote: > IMO it would probably be good to limit our CA roots to Mozilla's > libnss selection by default and perhaps add a packaged selection of > secondary CA's (like CACert) for those who are so inclined.
I think that's a good idea: make it easy to only use the Mozilla CA roots, and also make it easy to use "the other" roots like CACert. Seems like it could be just a USE flag for affected packages. Paweł
signature.asc
Description: OpenPGP digital signature
