Package: ca-certificates Version: 20190110 Control: block 932570 by -1 Hi. I have what may seem a slightly strange request.
Can you please have ca-certificates provide the Let's Encrypt CA cert - currently, the intermediate cert, and in due course their master root cert, in a specific location in the package ? I want this to help secure access to a Debian-provided service (the ftpmaster data API service https://api.ftp-master.debian.org/) when is accessed by dgit on a Debian sysem. intrigeri suggested (#932570) that a way to help do this would be to pin dgit's uses of TLS to the LE CA. To do this dgit needs to find a copy of the LE CA cert. It seems to us that the best way for this to be provided would be as part of ca-certificates. It's true that this involves treating LE rather specially. But LE is indeed special because it is the CA we use for Debian-provided services. What do you think ? Thanks, Ian. -- Ian Jackson <ijack...@chiark.greenend.org.uk> These opinions are my own. If I emailed you from an address @fyvzl.net or @evade.org.uk, that is a private address which bypasses my fierce spamfilter.
