On Fri, Nov 27, 2009 at 04:53:48PM +0100, Philipp Kern wrote: > Package: nss > Version: 3.12.4-1 > Severity: wishlist > > Hi Mike, > > attached is a proposal for a ca-certificates-nss package. I had initially > thought to name it ca-certificates-mozilla, but considering that we add some > certificates through patches it looked a bit like a lie to do it like this. > > Currently I fetch certdata.txt myself into the ca-certificates package and > then explode it into many files. I feel that it should instead be done in > the data source directly. Thus I copied the script to debian/. > > I implemented a blacklist because the way we organize certificates in the > file system does not support negative trust values, thus the one currently > in certdata.txt is blocked from the export. > > I would revamp ca-certificates in a similar way with subpackages putting > certificates into /usr/share/ca-certificates/<suffix> and I then intend to > recommend ca-certificates-nss, which should provide us with the basic set > almost everyone needs. > > Any input on this would be cool. :-)
Well, first, thanks. But the attachment is missing ;) Secondly, I really don't know... I have to think about it. Mike -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]

