Hi Daniel, On 14 March 2014 07:07, Daniel Kahn Gillmor <d...@fifthhorseman.net> wrote: > On 03/14/2014 01:31 AM, Thomas R. Koll wrote: [your thoughts on the CA ecosystem]
Thanks for sharing your opinion. >> ca-certificates didn’t have much of a policy until recently, but giving that >> a good, secure policy can take quite some work, relying on Mozilla >> is a sensible policy. Plus that SPI root cert, but they run debian >> infrastructure. > > This is not a good argument for including the SPI root cert, frankly. [...] We are closely watching the transition from SPI certificates to the ones provided by Gandi. Once the transition is finished we are very likely going to also drop the SPI root certificate. P.S. as a gentle reminder, a decision has been made by the maintainers. The result can be found in the archive. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
