(I'm sorry what is the right list?) I understand what you mean... maybe the test tool can be tuned so that a CACert get less points than e.g. Verisign, but a score of zero is very unkind :-) I mean there are desktop configurations that have CACert installed (e.g. 99% of Linux distributions).
On Thu, Feb 6, 2014 at 10:45 AM, Dave Cridland <[email protected]> wrote: > On Thu, Feb 6, 2014 at 9:40 AM, Daniele Ricci <[email protected]> > wrote: >> >> Hello, >> am I wrong or do I get that CACert [1] certificates are not trusted by >> the test tool at xmpp.net? >> >> [1] http://www.cacert.org/ > > > Not that this is really the right list, but you're right. > > I believe Thijs wanted to mimic the "normal" desktop trust anchors (ie, CA > selection), so that a fresh, ordinary user would have the same set of CAs on > their machine. > > Whatever *we* might think of CACert, that seems a reasonable definition. > > Dave. -- Daniele
