On Sunday, 24 de July de 2011 14:51:34 Gary Greene wrote: > On Jul 23, 2011, at 10:33 AM, Martin Koller wrote: > > Hi, > > > > can anyone answer the case https://bugs.kde.org/show_bug.cgi?id=277319 , > > please ? > Honestly, I really wish that Mozilla/KDE/Google/Wget/<insert FOSS group that > has their own root certificate store here> would get together on fdo and > create a common project that the root certificates could be aggregated at > instead of each project doing it themselves...
The answer is: STOP distributing our own certificates. Rely on Qt's support,
which also doesn't distribute certificates. The burden then falls on the system
integrator (the distros), which will select a root CA package that they feel
confident about.
They're also the ones who can roll out security updates directly to the users.
We can't.
--
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
PGP/GPG: 0x6EF45358; fingerprint:
E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
signature.asc
Description: This is a digitally signed message part.
