Bug 89483 - Request to add CAcert.org keys to security/ca-roots
Summary: Request to add CAcert.org keys to security/ca-roots
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: freebsd-ports-bugs (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-11-24 07:00 UTC by Peter Jeremy
Modified: 2005-11-26 14:47 UTC (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Peter Jeremy 2005-11-24 07:00:07 UTC 
	security/ca-roots provides a X.509 root certificate database.
	To quite CAcert's website (www.cacert.org):
	"CAcert.org is a community driven, Certificate Authority that issues
	 certificates to the public at large for free."
	CAcert's aim meshes well with FreeBSD's aims and that including
	CAcert's root certificates in FreeBSD would benefit both projects.

	CAcert has its root certificates included in Debian, Knoppix 3.8,
	Gentoo, MirBSD, CentOS 4 and the Nokia 770.  Negotiations are
	underway with Mozilla, Grml and Fedora.

	Disclaimer:
	My only interest in CAcert.org is as a validated assurer.

Fix: 

Import CAcert.org's root certificates from
	http://www.cacert.org/certs/class3.crt
	http://www.cacert.org/certs/root.crt
	(authenticating these certificates is left as an exercise for
	the reader :-)
How-To-Repeat: 	grep -y cacert /usr/ports/security/ca-roots/files/ca-root.crt
Comment 1 Pav Lucistnik freebsd_committer freebsd_triage 2005-11-26 00:51:43 UTC 
State Changed
From-To: open->feedback

Do you think you could submit a patch?
Comment 2 Edwin Groothuis freebsd_committer freebsd_triage 2005-11-26 10:52:46 UTC 
State Changed
From-To: feedback->open

Feedback received
Comment 3 Pav Lucistnik freebsd_committer freebsd_triage 2005-11-26 14:46:30 UTC 
State Changed
From-To: open->closed

Committed, thanks!