Am 17. August 2009 14:39 schrieb Heino Tiedemann <rotkaps_spam_trap(at)gmx.de>:
> es gab da mal ein Packet namens ca-roots.
> Warum wurde das aus den Ports entfernt?
Retire the ca-roots ports, which expired long ago.
The port is deprecated since it is not supported by the FreeBSD
Security Officer anymore. The reason for this is that the ca-roots
port makes promises with regard to CA verification which the current
Security Officer (and deputy) do not want to make.
For people who need a general root certificate list see the
security/ca_root_ns, but note that the difference in guarantees with
regard to which CAs are included in ca_root_ns vs. ca-roots. The
ca_root_ns port basically makes no guarantees other than that the
certificates comes from the Mozilla project.
Note that the ca-roots MOVED file entry on purpose does not point at
ca_root_ns due to the change in CA guarantees.
To Unsubscribe: send mail to majordomo(at)de.FreeBSD.org
with "unsubscribe de-bsd-questions" in the body of the message
Received on Mon 17 Aug 2009 - 15:11:15 CEST