Package: apt-cacher-ng Version: 2-2 Severity: normal Dear Maintainer,
I would like to kindly request the addition of the ca-certificates package [0] as a suggested dependency for apt-cacher-ng, maybe even as a recommended dependency. The certificates are required for apt-cacher-ng to access upstream repositories via https, for example in ForceManaged mode. The absence of these certificates results in client-side errors like the one below. root@foo:/# apt update Ign:1 http://apt-cacher/repo stable InRelease Err:2 http://apt-cacher/repo stable Release 500 SSL error: certificate verify failed After installing the ca-certificates packages, clients are instantly able to access the repository without a restart of the apt-cacher-ng process. I am quite aware of the fact that the use of https as a apt transport is not encouraged as the package signatures already provide ample security. Unfortunately thou, I found some 3rd party repositories only to be accessible via https. [0] https://packages.debian.org/stretch/ca-certificates -- System Information: Debian Release: 9.8 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-0.bpo.2-amd64 (SMP w/8 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE=en_GB:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages apt-cacher-ng depends on: ii adduser 3.115 ii debconf [debconf-2.0] 1.5.61 ii dpkg 1.18.25 ii init-system-helpers 1.48 ii libbz2-1.0 1.0.6-8.1 ii libc6 2.24-11+deb9u4 ii libgcc1 1:6.3.0-18+deb9u1 ii liblzma5 5.2.2-1.2+b1 ii libssl1.1 1.1.0j-1~deb9u1 ii libstdc++6 6.3.0-18+deb9u1 ii libsystemd0 232-25+deb9u9 ii libwrap0 7.6.q-26 ii lsb-base 9.20161125 ii zlib1g 1:1.2.8.dfsg-5 apt-cacher-ng recommends no packages. Versions of packages apt-cacher-ng suggests: pn avahi-daemon <none> pn doc-base <none> ii libfuse2 2.9.7-1+deb9u2
