commit 60fdea8dc95090a478408c687fe94b316307a9d4
Author: Stephen Wadeley <swadeley(a)redhat.com>
Date: Mon Dec 1 22:26:22 2014 +0100
Information about CA lists
en-US/The_Apache_HTTP_Server.xml | 12 +++++++++---
1 files changed, 9 insertions(+), 3 deletions(-)
---
diff --git a/en-US/The_Apache_HTTP_Server.xml b/en-US/The_Apache_HTTP_Server.xml
index f5436d8..4ae24a3 100644
--- a/en-US/The_Apache_HTTP_Server.xml
+++ b/en-US/The_Apache_HTTP_Server.xml
@@ -3891,7 +3891,7 @@ ErrorDocument 404 /404-not_found.html</programlisting>
By default, most web browsers are configured to trust a set of widely used
certificate authorities. Because of this, an appropriate CA should be chosen when setting
up a secure server, so that target users can trust the connection, otherwise they will be
presented with an error message, and will have to accept the certificate manually. Since
encouraging users to override certificate errors can allow an attacker to intercept the
connection, you should use a trusted CA whenever possible. For more information on this,
see <xref linkend="table-apache-mod_ssl-certificates-authorities" />.
</para>
<table id="table-apache-mod_ssl-certificates-authorities">
- <title>CA lists for most common web browsers</title>
+ <title>Information about CA lists used by common web
browsers</title>
<tgroup cols="2">
<colspec colname="option" colnum="1"
colwidth="20*" />
<colspec colname="description" colnum="2"
colwidth="60*" />
@@ -3918,15 +3918,21 @@ ErrorDocument 404 /404-not_found.html</programlisting>
<entry>
<application>Opera</application>
</entry>
- <entry><ulink
url="http://www.opera.com/docs/ca/">Root certificates used by
Opera</ulink>.
+ <entry><ulink
url="http://www.opera.com/docs/ca/">Information on root certificates used by
Opera</ulink>.
</entry>
</row>
<row>
<entry>
<application>Internet Explorer</application>
</entry>
+ <entry><ulink
url="http://support.microsoft.com/kb/931125">Information on root certificates
used by Microsoft Windows</ulink>.
+ </entry>
+ </row>
+ <row>
<entry>
- <ulink
url="http://support.microsoft.com/kb/931125">Windows root certificate program
members</ulink>.
+ <application>Chromium</application>
+ </entry>
+ <entry><ulink
url="http://www.chromium.org/Home/chromium-security/root-ca-policy&q...
on root certificates used by the Chromium project</ulink>.
</entry>
</row>
</tbody>