Larry Rosenman <l...@lerctr.org> writes: > I noticed that my FreeBSD boxes were not running WCG tasks any more and > while > investigating that found that WCG's root CA cert is no longer in the > bundle. > > linked are the ca's from their install (which work), and a .bu version > from > the current FreeBSD ca_root_nss port which does NOT. > > Can we investigate which cert needs to be re-added? > > Thanks! > > http://www.lerctr.org/~ler/ca-root-nss.crt > http://www.lerctr.org/~ler/ca-root-nss.crt.bu
gecko@ only keeps security/ca_root_nss port up to date. Any new or old CA certificates have to be vetted by Mozilla, ports-secteam@ or already being included by other Unix-like distributions. Related: ports/160387 and why CAcert.org was removed. Besides, adding extra certs to ca_root_nss port won't affect NSS consumers until we have a port for nss-pem. ------------------------------------------------- VFEmail.net - http://www.vfemail.net ONLY AT VFEmail! - Use our Metadata Mitigator to keep your email out of the NSA's hands! $24.95 ONETIME Lifetime accounts with Privacy Features! 15GB disk! No bandwidth quotas! Commercial and Bulk Mail Options! _______________________________________________ freebsd-gecko@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-gecko To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"
