Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 166254 - Use CAcert certificates instead of selfsigned
Summary: Use CAcert certificates instead of selfsigned
Status: RESOLVED DUPLICATE of bug 108944
Alias: None
Product: Gentoo Infrastructure
Classification: Unclassified
Component: Other web server issues (show other bugs)
Hardware: All Linux
: High enhancement (vote)
Assignee: Gentoo Infrastructure
URL: http://www.cacert.org/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-02-10 21:10 UTC by Hanno Böck
Modified: 2007-02-10 21:33 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Hanno Böck gentoo-dev 2007-02-10 21:10:41 UTC 
Several gentoo services, e.g. [bugs,forums].gentoo.org, use self-signed certificates. It's imho very bad security policy to use self-signed ssl-certs.
There's a noncommercial CA called cacert that issues certificates based on a web-of-trust-concept. I think it fit's very much in the spirit of free software, so I'd suggest to use cacert-certs for all Gentoo infrastructure that uses ssl.
Comment 1 Jakub Moc (RETIRED) gentoo-dev 2007-02-10 21:33:26 UTC 

*** This bug has been marked as a duplicate of bug 108944 ***