1 ca-certificates (20080809) unstable; urgency=low
3 * New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
4 This file can be used for proper certificate chaining if CACert
5 server certificates are used. The old class3.pem and root.pem
6 certificates are deprecated. This new file could safely serve as
7 a replacement for both. (Closes: #494343)
9 -- Philipp Kern <pkern@debian.org> Sat, 09 Aug 2008 14:58:24 -0300
11 ca-certificates (20080617) unstable; urgency=low
13 * Added French Government's IGC/A CA (both DSA and RSA).
16 -- Philipp Kern <pkern@debian.org> Mon, 23 Jun 2008 20:55:53 +0200
18 ca-certificates (20080616) unstable; urgency=low
20 * Fix installation on pt_BR locales. The problem was caused by the
21 .templates choices strings being marked for translation, with pt_BR
22 being the only language which actually translated them. Thanks to
23 Ubuntu for the fix, which needs to be around until Lenny is released
24 or six months have passed, whichever is later. (Closes: #472507)
25 * Drop Fumitoshi from the list of maintainers. Farewell!
26 * Bump Standards-Version to 3.8.0.
28 -- Philipp Kern <pkern@debian.org> Mon, 16 Jun 2008 17:41:50 +0200
30 ca-certificates (20080514) unstable; urgency=medium
32 * Added the new SPI CA certificate, created in response to the latest
33 openssl security update.
34 * Removed old SPI CA certificates (2006, 2007) as CAs cannot be
35 revoked sensibly. Expired CA created in 2003, expired in 2007 left
37 * Updated the Galician translation, thanks to Glennie Vignarajah.
40 -- Philipp Kern <pkern@debian.org> Wed, 14 May 2008 10:03:42 +0200
42 ca-certificates (20080411) unstable; urgency=low
44 * Added the current SPI CA certificate, used by Debian's infrastructure.
45 * Added Deutsche Telekom Root CA 2, which is used by German institutions
47 * Updated mozilla certificates from trunk, which led to the following
48 adds (+) and removes (-):
49 + Camerfirma Chambers of Commerce Root
50 + Camerfirma Global Chambersign Root
51 + Certplus Class 2 Primary CA
52 + COMODO Certification Authority
53 + DigiCert Assured ID Root CA
54 + DigiCert Global Root CA
55 + DigiCert High Assurance EV Root CA
58 + Entrust Root Certification Authority
59 + Firmaprofesional Root CA
60 + GeoTrust Global CA 2
61 + GeoTrust Primary Certification Authority
62 + GeoTrust Universal CA
63 + GeoTrust Universal CA 2
64 + GlobalSign Root CA - R2
66 + NetLock Business (Class B) Root
67 + NetLock Express (Class C) Root
68 + NetLock Notary (Class A) Root
69 + NetLock Qualified (Class QA) Root
74 + Starfield Class 2 CA
75 + StartCom Certification Authority
78 + SwissSign Gold CA - G2
79 + SwissSign Platinum CA - G2
80 + SwissSign Silver CA - G2
82 + thawte Primary Root CA
83 + TURKTRUST Certificate Services Provider Root 1
84 + TURKTRUST Certificate Services Provider Root 2
85 + VeriSign Class 3 Public Primary Certification Authority - G5
87 + XRamp Global CA Root
88 - Verisign Class 1 Public Primary OCSP Responder
89 - Verisign Class 2 Public Primary OCSP Responder
90 - Verisign Class 3 Public Primary OCSP Responder
91 - Verisign Secure Server OCSP Responder
92 (Closes: #447062, #456581)
93 * Updated the Russian debconf translation, thanks to Mikhail Gusarov.
95 * Reworded the description and made it static to ease translations.
96 * Reworded and amended README.Debian.
97 * Added myself to the uploaders of this package.
98 * Applied a patch by Martin F. Krafft to support hooks scripts
99 on add/remove of a certificate. (Closes: #377314)
101 -- Philipp Kern <pkern@debian.org> Sat, 12 Apr 2008 17:35:26 +0200
103 ca-certificates (20070303-0.1) unstable; urgency=low
105 * Non-maintainer upload to fix longstanding pending l10n issues.
106 * Debconf templates and debian/control reviewed by the debian-l10n-
107 english team as part of the Smith review project.
108 Closes: #432249, #434789
109 * Debconf translation updates:
110 - Japanese. Closes:#433067
111 - Basque. Closes: #433074
112 - Spanish. Closes: #433078
113 - Czech. Closes: #433100
114 - Galician. Closes: #433215
115 - Russian. Closes: #433224
116 - Swedish. Closes: #433432
117 - Vietnamese. Closes: #433792, #427000, #434992
118 - Dutch. Closes: #434670
119 - German. Closes: #434788
120 - Italian. Closes: #435029
121 * Portuguese. Closes: #435471
122 * Finnish. Closes: #448826
123 * Remove /etc/ssl when purging the package (only if that
124 directory is empty). Closes: #454334
125 * [Lintian] Give a reference to the GPL text in debian/copyright
126 * [Lintian] No longer ignore errors from "make clean"
127 * [Lintian] Upgrade debhelper compatibility to 4 (with debian/compat).
129 -- Christian Perrier <bubulle@debian.org> Thu, 14 Feb 2008 19:52:37 +0100
131 ca-certificates (20070303) unstable; urgency=low
133 * Add debconf.org crt. closes: Bug#342088
134 * Add cacert class3 crt. closes: Bug#350282
135 * Add debian/po/pt.po. closes: Bug#408183
136 * Update debian/po/ru.po. closes: Bug#410770
137 * Update debian/po/pt_BR.po. closes: Bug#403824
138 * Add debian/po/gl.po. closes: Bug#407951
140 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 4 Mar 2007 14:12:23 +0900
142 ca-certificates (20061027.2) unstable; urgency=low
144 * Non-maintainer upload to fix an RC issue revealed by the last NMU.
145 * Avoid cd to /etc/ssl/certs to removing hash symlinks
148 -- Christian Perrier <bubulle@debian.org> Fri, 2 Feb 2007 07:23:27 +0100
150 ca-certificates (20061027.1) unstable; urgency=low
152 * Non-maintainer upload to fix remaining l10n issues
153 * Debconf translation updates:
154 - Czech. Closes: #407807
155 - Spanish. Closes: #401968
156 - German. Closes: #396942
157 * Add debconf-updatepo to the clean target in debian/rules
158 to guarantee up-to-date PO(T) files
160 -- Christian Perrier <bubulle@debian.org> Mon, 22 Jan 2007 18:56:53 +0100
163 ca-certificates (20061027) unstable; urgency=low
165 * sbin/update-ca-certificates:
166 in fresh mode, rm symlinks only point to /usr/share/ca-certificates.
167 preserve other symlinks. closes: Bug#387089
168 * debian/po/nl.po: updated
170 * debian/po/fr.po: updated
172 * debian/po/da.po: updated
175 -- Fumitoshi UKAI <ukai@debian.or.jp> Sat, 28 Oct 2006 02:28:50 +0900
177 ca-certificates (20060816) unstable; urgency=low
179 * debian/control: explicitly mention that trustworthiness of certificate
180 authorities is not evaluated.
182 * debian/templates: refine messages
184 * debian/postinst: remove tailing spaces to avoid unnecessary dpkg-old file.
186 * debian/control: libssl0.9.7->libssl0.9.8
188 * debian/postrm: remove .dpkg-old files
190 * debian/README.Debian: fix
192 * debian/postinst: fix typo
194 * debian/po/sv.po: added
196 * debian/po/es.po: added
198 * add new SPI CA certificate
199 submitted by Michael C. Schultheiss <schultmc@debian.org>
201 -- Fumitoshi UKAI <ukai@debian.or.jp> Thu, 17 Aug 2006 13:12:27 +0900
203 ca-certificates (20050804) unstable; urgency=low
205 * use ${misc:Depends} in debian/control for debconf
206 * update description in debian/control
208 * update debian/po/vi.po
210 * update debian/po/de.po
213 -- Fumitoshi UKAI <ukai@debian.or.jp> Thu, 4 Aug 2005 01:29:38 +0900
215 ca-certificates (20050518) unstable; urgency=high
217 * fix ca-certificates.crt generationumask-sensitive and racy
219 * update mozilla/certdata.txt
220 add: "Certum Root CA", "Comodo AAA Services root"
221 "Comodo Secure Services root",
222 "Comodo Trusted Services root",
223 "IPS Chained CAs root", "IPS CLASE1 root", "IPS CLASE3 root",
224 "IPS CLASEA1 root", "IPS CLASEA3 root", "IPS Servidores root"
225 "IPS Timestamping root",
227 "Security Communication Root CA",
228 "Sonera Class 1 Root CA", "Sonera Class 2 Root CA",
229 "Staat der Nederlanden Root CA",
230 "TDC Internet Root CA", "TDC OCES Root CA",
231 "UTN DATACorp SGC Root CA", "UTN USERFirst Email Root CA",
232 "UTN USERFirst Hardware Root CA", "UTN USERFirst Object Root CA"
233 * add CACert.org's Root CA
234 closes: Bug#213086, Bug#288293
235 * add debian/po/vi.po
237 * add debian/po/cs.po
239 * write "How certificate will be accepted in ca-certificates package"
242 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 18 May 2005 00:40:54 +0900
244 ca-certificates (20040809) unstable; urgency=low
246 * previous version was not fixed Bug#255933 correctly.
247 update-ca-certificates now remove symlinks of deselected entries
248 in ca-certificates.conf
251 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 9 Aug 2004 03:23:20 +0900
253 ca-certificates (20040808) unstable; urgency=low
255 * run update-ca-certificates by /bin/sh -e
257 * update-ca-certificates remove symlinks of deselected entries
258 in ca-certificates.conf
260 * change default of trust_new_crts from 'ask' to 'yes'
261 closes: Bug#218838, Bug#221527, Bug#236675, Bug#247509
262 * refer libssl0.9.7 instead of libssl0.9.6 in Enhances:
264 * add brasil.gov.br certs
266 * add Signet CA Roots certs
268 * add QuoVadis CA Roots certs
280 * fix quote characters in template
282 * remove debian.org, because certs used in db.debian.org has been
283 revoked due to debian.org crack incidents.
284 db.debian.org uses certificates using spi-inc.org Root CA.
286 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 8 Aug 2004 10:58:30 +0900
288 ca-certificates (20031007.1) unstable; urgency=low
291 * Add brasil.gov.br/brasil.gov.br.crt, created from
292 http://www.icpbrasil.gov.br/certificadoACRaiz.crt
293 * Add debian/po/pt_BR.po: closes: Bug#224612
295 -- Otavio Salvador <otavio@debian.org> Thu, 5 Aug 2004 12:16:26 -0300
297 ca-certificates (20031007) unstable; urgency=low
299 * add debian/po/ru.po: closes: Bug#214371
301 -- Fumitoshi UKAI <ukai@debian.or.jp> Tue, 7 Oct 2003 03:06:06 +0900
303 ca-certificates (20030924) unstable; urgency=low
305 * add debian/po/ja.po: closes: Bug#212565
307 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 24 Sep 2003 22:09:09 +0900
309 ca-certificates (20030916) unstable; urgency=low
311 * add debian/po/fr.po: closes: Bug#211224, Bug#206769
312 * debian/config: if new cert is asked, don't ask all available certs
315 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 17 Sep 2003 02:12:14 +0900
317 ca-certificates (20030915) unstable; urgency=low
319 * debian/config.in: fix typo. closes: Bug#190990
320 * add option for new CA certificates. closes: Bug#190989
321 * switch to gettext-based debconf templates. closes: Bug#205782
322 * update mozilla/certdata.txt from mozilla 1.4 release
324 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 15 Sep 2003 01:15:04 +0900
326 ca-certificates (20030420) unstable; urgency=low
328 * add README.Debian and update-ca-certificates(8). closes: Bug#189604
329 * fix broken English in debconf template. closes: Bug#189606
330 * don't remove symlinks in /etc/ssl/certs. closes: Bug#189607
331 * preserve comments in /etc/ca-certificates.conf when upgrading.
334 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 21 Apr 2003 00:06:01 +0900
336 ca-certificates (20030415) unstable; urgency=medium
338 * fix upgrade problem
339 closes: Bug#188938, Bug#188940
342 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 14 Apr 2003 23:00:58 +0900
344 ca-certificates (20030414) unstable; urgency=medium
346 * certificates are installed in /usr/share/ca-certificates
347 you can find md5sum of certs files. closes: Bug#170777
349 * debconf to generate /etc/ca-certificates.conf
350 * update-ca-certificates update /etc/ssl/certs according
351 /etc/ca-certificates.conf
352 It also generate /etc/ssl/certs/ca-certificates.crt
353 which is single-file version of certs.
356 * change extension from .pem to .crt in /usr/share/ca-certificates
358 application/x-x509-ca-cert crt
359 but it will be hardlink or copied in /etc/ssl/certs with .pem
360 extension by update-ca-certificates.
361 c_rehash requires .pem extension
363 * Update certificate from mozilla 2:1.3-4
364 mozilla/security/nss/lib/ckfw/builtins/certdata.txt
365 cefd05b299ea683fc6b1ce9ff1e23a3f mozilla/certdata.txt
367 * Add spi-inc.org/spi-ca.crt from http://www.spi-inc.org/secretary/
368 33922a1660820e44812e7ddc392878cb spi-inc.org/spi-ca.crt
369 % openssl x509 -in spi-inc.org/spi-ca.crt -fingerprint -noout
370 MD5 Fingerprint=ED:85:3A:FD:32:43:13:73:91:4D:94:06:C4:10:EB:E5
372 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 14 Apr 2003 00:02:48 +0900
374 ca-certificates (20020323) unstable; urgency=low
376 * Moved from non-US to main now that openssl has moved there.
378 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 24 Mar 2002 03:11:54 +0900
380 ca-certificates (20020208) unstable; urgency=low
382 * add db.debian.org certificate
384 -- Fumitoshi UKAI <ukai@debian.or.jp> Fri, 8 Feb 2002 23:46:11 +0900
386 ca-certificates (20020112) unstable; urgency=low
388 * upload to non-US instead of main, because it depends on openssl
389 (it uses c_rehash in openssl in maintainer scripts)
391 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 13 Jan 2002 04:30:28 +0900
393 ca-certificates (20020107) unstable; urgency=low
395 * Initial Release. closes: Bug#126586
397 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 7 Jan 2002 21:16:51 +0900