Rajko M. wrote:
On Wednesday, October 26, 2011 02:05:37 AM Ludwig Nussel wrote:
Anyways, in general no package must include it's own list of root CA certificates but rather use the distro provided defaults. If you find some package that includes it's own list please file a bug and let the package maintainer fix it (CC security). Should be an easy task.
Is that valid for Mozilla products and Chromium?
It would be desirable, yes. The system list is Mozilla's anyways. AFAIK Chromium uses NSS too so if NSS was able to read an external source instead of only the compiled in(!) ones both browsers would automatically use the system certs. cu Ludwig -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org