Package: security-tracker
Severity: normal
Tags: confirmed
Hi,
I'm looking into this problem, but would like to have documented the
problem in the BTS. Currently since we switched to fetch information
trough https updates of NVD information for the security-tracker does
not work anymore.
Makefile contains a update-nvd target, which fetches the nvde-$year
information via https:
wget -q -Odata/nvd/$$name https://nvd.nist.gov/download/$$name
ERROR: The certificate of `nvd.nist.gov' is not trusted.
ERROR: The certificate of `nvd.nist.gov' hasn't got a known issuer.
Solution: We need (as for example also needed for qa's vcs-watch) our
own CA store for the security-tracker which is used on soler.
Regards,
Salvatore
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
