Re: ca-legacy

On Thu, Jan 7, 2016 at 9:58 PM, Michael Catanzaro wrote: > Any sites affected by these removals are broken in upstream Firefox. I don't > see any reason Fedora software should be compatible with more sites than > Firefox. Agreed. What will happen when upgrading Fedora

Re: ca-legacy

On Wed, 2016-01-06 at 12:56 -0500, Stephen Gallagher wrote: > Well, the problem was never software that Fedora was shipping. The > problem is Fedora *as a client*. There are unfortunately many > websites > out there that are still signed by insecure certificates. We > certainly > need to choose a

Re: ca-legacy

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/06/2016 11:23 AM, Michael Catanzaro wrote: > Hi, > > Is any important software (e.g. openssl, gnutls, glib-networking, > Qt) in Fedora still relying on our legacy 1024-bit root RSA > certificates? > > I believe Fedora is currently the only