Bug 89483

Summary: Request to add CAcert.org keys to security/ca-roots
Product: Ports & Packages Reporter: Peter Jeremy <PeterJeremy>
Component: Individual Port(s)Assignee: freebsd-ports-bugs (Nobody) <ports-bugs>
Status: Closed FIXED    
Severity: Affects Only Me CC: PeterJeremy
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   

Description Peter Jeremy 2005-11-24 07:00:07 UTC 
	security/ca-roots provides a X.509 root certificate database.
	To quite CAcert's website (www.cacert.org):
	"CAcert.org is a community driven, Certificate Authority that issues
	 certificates to the public at large for free."
	CAcert's aim meshes well with FreeBSD's aims and that including
	CAcert's root certificates in FreeBSD would benefit both projects.

	CAcert has its root certificates included in Debian, Knoppix 3.8,
	Gentoo, MirBSD, CentOS 4 and the Nokia 770.  Negotiations are
	underway with Mozilla, Grml and Fedora.

	Disclaimer:
	My only interest in CAcert.org is as a validated assurer.

Fix: 

Import CAcert.org's root certificates from
	http://www.cacert.org/certs/class3.crt
	http://www.cacert.org/certs/root.crt
	(authenticating these certificates is left as an exercise for
	the reader :-)
How-To-Repeat: 	grep -y cacert /usr/ports/security/ca-roots/files/ca-root.crt
Comment 1 Pav Lucistnik freebsd_committer freebsd_triage 2005-11-26 00:51:43 UTC 
State Changed
From-To: open->feedback

Do you think you could submit a patch?
Comment 2 Edwin Groothuis freebsd_committer freebsd_triage 2005-11-26 10:52:46 UTC 
State Changed
From-To: feedback->open

Feedback received
Comment 3 Pav Lucistnik freebsd_committer freebsd_triage 2005-11-26 14:46:30 UTC 
State Changed
From-To: open->closed

Committed, thanks!