On Saturday 02 May 2015 13:58:09 Walter Dnes wrote: > The latest update on my netbook is still stumbling along due to a few > speed bumps. Here's something that I noticed strictly by accident as > the build scrolled by. I checked in /var/portage/elog afterwards, but > only found a few messages about broken symlinks, and their removal.
The ca-certificates ebuild will remove any root certificates or hash symlinks, which are no longer trusted from your /etc/ssl/certs/ directory. I recall in the past I had to tidy up manually, but these days I don't need to. > I don't know how to interpret the attached. Were the certificates > installed or not? As a general question, is there a tool to dig through > and list the certs on a machine... without pulling in 90% of QT or > GNOME? You can have a look in /etc/ssl/certs/ which contains the default OS Root CA certificates and see if there are any broken symlinks. You can also run a manual update, if it's been a long time since you updated this package, or put it in a cron job: # /usr/sbin/update-ca-certificates --verbose Updating certificates in /etc/ssl/certs... Doing . A-Trust-nQual-03.pem => 9c472bf7.0 ACCVRAIZ1.pem => a94d09e5.0 ACEDICOM_Root.pem => 381ce4dd.0 AC_Raíz_Certicámara_S.A..pem => 6f2c1157.0 [snip ...] thawte_Primary_Root_CA.pem => 2e4eed3c.0 thawte_Primary_Root_CA_-_G2.pem => c089bbbd.0 thawte_Primary_Root_CA_-_G3.pem => ba89ed3b.0 174 added, 0 removed; done. Running hooks in /etc/ca-certificates/update.d....done. -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
