Gentoo Archives: gentoo-project

From: "Robin H. Johnson" <robbat2@g.o>
To: gentoo-project@l.g.o
Subject: [gentoo-project] Gentoo SSL certificates switching to CACert
Date: Sun, 25 May 2008 04:48:31
1 In the past, all of the SSL certificates for Gentoo services
2 (forums.g.o, bugs.g.o, etc) were all self-signed. Now that the
3 foundation is in good legal standing again, we are making headway with
4 replacing the certificates with those from CACert, via their
5 Organization assurance program.
7 From the perspective of users, if their browsers trust the CACert Level
8 3 certificate or the Level 1, then the browser should trust the new
9 Gentoo certificates.
11 One of the new certificates is live on as of today,
12 but exposed the need for some further display improvements only (wrong
13 email address) - it still functions perfectly.
15 If your browser doesn't include the CACert roots, see either:
18 Or make sure you have the latest ca-certificates package (if the browser
19 uses it), and that update-ca-certificates was run properly.
21 --
22 Robin Hugh Johnson
23 Gentoo Linux Developer & Infra Guy
24 E-Mail : robbat2@g.o
25 GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85