Shared System Certificates followup: Packaging Guidelines?
Stephen Gallagher
sgallagh at redhat.com
Wed Dec 11 18:05:28 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 12/11/2013 12:59 PM, Toshio Kuratomi wrote:
* Should we allow packages to ship automatically trusted certificates?
We need to be cognizant of the potential risk inherent in allowing
packagers to drop new trusted CA certificates onto the system. It's
worth considering whether such things should require an approval process.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlKoqWcACgkQeiVVYja6o6OV4QCgo8tNx+JPvfuGUlx68CDI8iZZ
hk0An3BfXv38IRNOlrYXBpv9usNZuVTa
=m/HR
-----END PGP SIGNATURE-----
More information about the devel
mailing list