ca-roots 1.2 security =23

DEPRECATED: Not supported by FreeBSD Security Officer anymore
This port expired on: 2007-07-07
A list of SSL CA root certificates
Was Maintained by: secteam@FreeBSD.org
Port Added: 05 Sep 2000 14:36:48
License: not specified in port

This port simply contains a list of SSL Certificate Authority root
certificates. Such a list performs a similar role for SSL Certificate
verfication that the root cache does for DNS servers.

This list originally came from mod_ssl (where it was ca-bundle.crt. They
originally got their list from Netscape Communicator/Navigator),
but will be maintained separately. The maintainer will apply strict
criteria to suggestions for additions to this list (in concert with
the FreeBSD security officer). CAs wishing to be added will need
to assure the FreeBSD user community that their certification procedures
are sufficiently secure to render their certificates trustworthy.

CVSWeb : Distfiles Availability : PortsMonThere are no ports dependent upon this port

---

No installation instructions: this port has been deleted.

The package name of this deleted port was: ca-roots

---

Configuration Options

     No options to configure

---

Master Sites:

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

• port deleted on 2008-06-29
  REASON: No longer supported by FreeBSD Security Officer
  

Retire the ca-roots ports, which expired long ago.

The port is deprecated since it is not supported by the FreeBSD
Security Officer anymore.  The reason for this is that the ca-roots
port makes promises with regard to CA verification which the current
Security Officer (and deputy) do not want to make.

For people who need a general root certificate list see the
security/ca_root_ns, but note that the difference in guarantees with
regard to which CAs are included in ca_root_ns vs. ca-roots.  The
ca_root_ns port basically makes no guarantees other than that the
certificates comes from the Mozilla project.

Note that the ca-roots MOVED file entry on purpose does not point at
ca_root_ns due to the change in CA guarantees.

With hat:       security-officer

Deprecated and set one month expiration since it's not supported by
the FreeBSD Security Officer anymore.

The current ca-roots port makes promises with regard to CA verification
which the current Security Officer (and deputy) do not want to make.

With hat:       so
Discussed with: cperciva (some time ago)

Reassign to secteam@

PR:             111371
Submitted by:   Nils Vogels <nivo+kw+ports.bfa274@is-root.com> (maintainer)

Hand maintainership to submitter

PR:             98097
Submitted by:   Nils Vogels <nivo+kw+ports.bfa274@is-root.com>

Prune expired certificates (including one that will expire in 4 days during
the Ports Freeze)

PR:             ports/93276
Approved by:    secteam (remko)

- Add CAcert.org certificates

PR:             ports/89483
Submitted by:   Peter Jeremy <PeterJeremy@optushome.com.au>

- Kill pseudo-empty distinfo files

De-pkg-comment.

Release all my ports.

kris made it clear that by his measure I'm not doing my job as a port
maintainer. Far be it from me to be an obstruction to the project.

Oops. The plist entry isn't enough. We also need to do it in the   makefile.    

Make a symlink in /etc/ssl    

Convert category security to new layout.  

Replace starting text with something more informational and   freebsd-centric.  
 

Get rid of work directory. Sigh.  

ca-roots port -- a list of SSL Certificate Authority root certs    

14 vulnerabilities affecting 32 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities