RFC: Proposal: Install a /etc/ssl/cert.pem by default?
Poul-Henning Kamp
phk at phk.freebsd.dk
Thu Jul 3 15:36:30 UTC 2014
In message <CAF6rxgmsoJCnCpnGKUXe0jnPEgGNm3BB_SF73vLOkK5X9pOoPw at mail.gmail.com>, Eitan Adler writes:
>On 3 July 2014 07:57, Jonathan Anderson <jonathan at freebsd.org> wrote:
>> Just my $.02, but if the FreeBSD project is to maintain a
>> ca-root-freebsd.pem, I think it should have one certificate in it: the root
>> FreeBSD Project cert. Beyond that, I'm not willing to vouch for the
>> trustworthiness of any CA, and I don't think the Project should either.
I think this makes a lot of sense: FreeBSD is not in the trust-business
and have no benefit from trying to enter it.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the freebsd-security
mailing list