Hi Thomas,
Thomas R. Koll wrote:
> In a nutshell, if you want CACert to be re-added you must prove
> CACert and its infrastructure is trustworthy.
That's IMHO the wrong check for inclusion.
As I already wrote in my initial mail (you should have read it
fully... ;-), I suggest to include but disable it by default since I
do see the issues. See Christoph's and Daniel's mails for reasoning
details.
> Please do not reason against the removal, instead you have to
> prove (every year in my eyes) that CACert is trustworthy.
Feel free to disable any certificate by default you don't think it's
trustworthy. Disable all if you want. I'm fine with it. But if you're
assure that it's source is authentic, then include it.
As Christoph suggested, ca-certificates should rather focus on
authenticity than on trustworthyness. Because trust is something which
is missing a lot in the current global SSL infrastructure, independent
of how much audits are there or not.
> PS: Lastly, this is not an opinion poll.
It obviously is if you look at the heated discussion.
The only thing I miss in the Debian BTS compared to Launchpad is that
I can't easily say "I'm affected by this issue to" aka the "me too"
button. I think that's a great way to show the maintainer what really
matters to the mass of users without getting tons of e-mails because
of that. If an issue is really annoying, you even get "me toos" by
e-mail in the Debian BTS because of the missing button.
I'd expect you would have gotten quite some of these "me too" clicks
in #741561.
Regards, Axel
--
,''`. | Axel Beckert <a...@debian.org>, http://people.debian.org/~abe/
: :' : | Debian Developer, ftp.ch.debian.org Admin
`. `' | 1024D: F067 EA27 26B9 C3FC 1486 202E C09E 1D89 9593 0EDE
`- | 4096R: 2517 B724 C5F6 CA99 5329 6E61 2FF9 CD59 6126 16B5
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
