On Fri, Oct 26, 2018 at 01:52:49PM +0200, Michael Ströder wrote:
On 10/26/18 9:51 AM, Ludwig Nussel wrote:
Cristian Rodríguez schrieb:
Something must hard require ca-certificates for the package manager to be functional by default,
IOW if you install with --no-recommends you better know what you are doing. Looks like you spent some thought on deciding that "systemd shadow zypper openSUSE-release vim" is sufficient for your use case, intentionally left out ca-certificates-mozilla and yet used https for the repo. You have to decide what you want :-)
In my case I'm using HTTPS with zypper but without the hundreds of "trusted" certs in ca-certificates-mozilla.
I'd be glad if there would be a global easy-to-use option for a trusted root CA file somewhere in /etc/zypp/zypp*.conf.
You could have root-cert packages with single certs only you want, see e.g. ca-certicates-cacert as example. Ciao, Marcus -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org