Go Daddy root certificates

Thiago Macieira thiago at kde.org
Mon Jul 25 01:10:56 BST 2011


On Sunday, 24 de July de 2011 14:51:34 Gary Greene wrote:
> On Jul 23, 2011, at 10:33 AM, Martin Koller wrote:
> > Hi,
> > 
> > can anyone answer the case https://bugs.kde.org/show_bug.cgi?id=277319 ,
> > please ?
> Honestly, I really wish that Mozilla/KDE/Google/Wget/<insert FOSS group that
> has their own root certificate store here> would get together on fdo and
> create a common project that the root certificates could be aggregated at
> instead of each project doing it themselves...

The answer is: STOP distributing our own certificates. Rely on Qt's support, 
which also doesn't distribute certificates. The burden then falls on the system 
integrator (the distros), which will select a root CA package that they feel 
confident about.

They're also the ones who can roll out security updates directly to the users. 
We can't.

-- 
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
      PGP/GPG: 0x6EF45358; fingerprint:
      E067 918B B660 DBD1 105C  966C 33F5 F005 6EF4 5358
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20110724/1bfb60dd/attachment.sig>


More information about the kde-core-devel mailing list