On 11/06/2016 02:09 PM, DJ Lucas wrote:
Actually, it's four, and the fourth (local NSS trust DB) is not
accounted for currently. Looks like 'certutil -A some_file' would do the
trick, but I haven't verified that yet.
It would be 'certutil -A some_file.pem -d
[dbm:~/.mozilla/[firefox|seamonkey|thunderbird]/*.default/|sql:~/.pki/nssdb]',
and it's obviously user and application specific as we have it in the
book now.
Investigating that part of it opened a whole 'nother can of worms:
https://wiki.mozilla.org/NSS_Shared_DB_Howto
A partial guide to completing this work is outlined here:
http://blog.xelnor.net/firefox-systemcerts/
This might ultimately make certificate management even easier, killing
the perl scripts in their entirety, in favor of the new dependency, NSS.
I'll volunteer to do the POC if there is some interest in getting it
'completely right' (everything in the central store). I'll likely do it
anyway to satisfy my newfound curiosity.
--DJ
--
http://lists.linuxfromscratch.org/listinfo/blfs-dev
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
