Bug#580846: jxplorer: Bundled CA and client certificates are insane
Twas brillig at 00:37:47 14.05.2010 UTC+02 when 1o5g4...@gmail.com did gyre and gimble: GG I'll copy them under ~/.jxplorer/security at the first startup and GG set ~/.jxplorer/security as default certificates repository. Then, GG with the viewer it's possible to delete demo certificates, import GG new ones, change password of an already existing keystore. Makes sense, I didn't know those certificates are mentioned in documentation. -- http://fossarchy.blogspot.com/ pgp25AVXoXqLA.pgp Description: PGP signature
Bug#580846: jxplorer: Bundled CA and client certificates are insane
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 05/09/2010 10:20 AM, Mikhail Gusarov wrote: There are several certificates installed with the tool, namely marjorie_simpler, carooot2, trusted and cn=certificate authority, o=minipki, c=au which look insane and can't be deleted (as they are located in /usr/share). It'd be much better to use certificates from ~/.jxplorer/security instead of /usr/share/jxplorer/security and drop all the strange certificates from the later location. Under /usr/share/jxplorer/security you find demo certificates [1] but I wouldn't delete them. I'll copy them under ~/.jxplorer/security at the first startup and set ~/.jxplorer/security as default certificates repository. Then, with the viewer it's possible to delete demo certificates, import new ones, change password of an already existing keystore. Anyway, who don't want to use the existing ones can change keystore locations from menu Security - Advanced Keystore Options or modifying option.ssl.cacerts and option.ssl.clientcerts paths in ~/.jxplorer/jxconfig.txt config file. Thanks for your bug, Gabriele [1] http://jxplorer.org/documents/keystores.html -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkvsfzsACgkQp3cdCbVcnCtejQCgvzqjky1922NPEEdgeAtbmMr2 6jQAnRrgFvwvtp/9YQT+GZeAYwbusTL3 =6IjT -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#580846: jxplorer: Bundled CA and client certificates are insane
Package: jxplorer Version: 3.2rc2+dfsg-3 Severity: normal There are several certificates installed with the tool, namely marjorie_simpler, carooot2, trusted and cn=certificate authority, o=minipki, c=au which look insane and can't be deleted (as they are located in /usr/share). It'd be much better to use certificates from ~/.jxplorer/security instead of /usr/share/jxplorer/security and drop all the strange certificates from the later location. -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing'), (50, 'experimental'), (50, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-4-openvz-amd64 (SMP w/2 CPU cores) Locale: LANG=cs_CZ.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages jxplorer depends on: ii java-wrappers 0.1.15 wrappers for java executables ii javahelp2 2.0.05.ds1-3 Java based help system ii junit 3.8.2-4 Automated testing framework for Ja ii openjdk-6-jre [java6-runtim 6b18-1.8-1 OpenJDK Java runtime, using Hotspo jxplorer recommends no packages. jxplorer suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org