Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 489126 - app-misc/ca-certificates description improvement
Summary: app-misc/ca-certificates description improvement
Status: VERIFIED NEEDINFO
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Core system (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo's Team for Core System packages
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-10-23 12:20 UTC by Jonas Stein
Modified: 2013-11-01 12:02 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jonas Stein gentoo-dev 2013-10-23 12:20:49 UTC
I suggest to use the original description from debian
http://packages.debian.org/sid/ca-certificates



Reproducible: Always
Comment 1 Tony Vroon gentoo-dev 2013-10-30 09:40:42 UTC
Bugs should be specific, and worded as a change value from "X" to "Y". Not "make it more like Debian" whilst pointing vaguely in the direction of a web page.
Comment 2 Jonas Stein gentoo-dev 2013-10-31 11:04:35 UTC
OK:

Change 
======
DESCRIPTION  Common CA Certificates PEM files
======

to 
======
DESCRIPTION Common CA Certificates (SSL/PEM) collected by the debian project.

LONG DESCRIPTION 
This package includes PEM files of CA certificates to allow SSL-based applications to check for the authenticity of SSL connections.

It includes, among others, certificate authorities used by the Debian infrastructure and those shipped with Mozilla's browsers.

Please note that Debian can neither confirm nor deny whether the certificate authorities whose certificates are included in this package have in any way been audited for trustworthiness or RFC 3647 compliance. Full responsibility to assess them belongs to the local system administrator. 
======
Comment 3 Thomas Deutschmann gentoo-dev Security 2013-10-31 12:03:43 UTC
Are you sure about

  Common CA Certificates (SSL/PEM) ...
                          ^^^^^^^
                             |
                            ???

The parenthesis doesn't make sense for me:

1) PEM is a file format. Files ending with .pem are normally used for Base64-encoded certificates. So what does "SSL/PEM" says here? It's wrong.

2) 'man update-ca-certificates' says

  > Furthermore all certificates with a .crt extension found below /usr/local
  > /share/ca-certificates are also included as implicitly trusted.

Because the .crt extension can be used for Base64- and DER-encoded certificates, the parenthesis doesn't add any information, does it?

So if you are going to change the description, please remove the parenthesis at all.



Also, are you sure that the package only contains Base64-encoded certificates? If not, don't mention the format (encoding) in the long description if it doesn't add any important information.
Comment 4 Jonas Stein gentoo-dev 2013-11-01 12:02:34 UTC
that is a good point. It may be better not to mention the file format.