Date: Thu, 7 Jun 2007 21:45:28 +0200 From: "Simon L. Nielsen" <simon@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: ports/security/ca-roots Makefile Message-ID: <20070607194527.GB1193@zaphod.nitro.dk> In-Reply-To: <200706071941.l57JfFNw026347@repoman.freebsd.org> References: <200706071941.l57JfFNw026347@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2007.06.07 19:41:15 +0000, Simon L. Nielsen wrote: > simon 2007-06-07 19:41:15 UTC > > FreeBSD ports repository > > Modified files: > security/ca-roots Makefile > Log: > Deprecated and set one month expiration since it's not supported by > the FreeBSD Security Officer anymore. > > The current ca-roots port makes promises with regard to CA verification > which the current Security Officer (and deputy) do not want to make. brooks@ has a new port which has a list of CA's (I think he said it was extracted on-the-fly from OpenSSL but I can't recall for sure), which will should be committed soonish. This will not be a direct replacement for ca-roots wrt. guarantees of the CA's, but can probably be used in most cases where ca-roots is used today. -- Simon L. Nielsen
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070607194527.GB1193>