1 ca-certificates (20111022.1) UNRELEASED; urgency=low
3 TODO: set version to release date, unstable, and delete this line
6 * Add 3.0 (native) source format
7 * Add Vcs-Git/Browser fields
8 * Add myself as new Maintainer with Uploaders Closes: #588219
9 * Update mozilla certdata.txt file to the latest version
18 -- Michael Shuler <michael@pbandjelly.org> Sun, 23 Oct 2011 14:13:58 -0500
20 ca-certificates (20111022) unstable; urgency=low
23 * Fix pending l10n issues. Debconf translations:
24 - German (Helge Kreutzmann). Closes: #634000
25 - French (Christian Perrier). Closes: #634092
26 - Russian (Yuri Kozlov). Closes: #635146
27 - Swedish (Martin Bagge / brother). Closes: #640622
28 - Slovak (Slavko). Closes: #641987
29 - Spanish; (Javier Fernández-Sanguino). Closes: #642359
30 - Japanese (Kenshi Muto). Closes: #644828
31 - Czech (Miroslav Kure). Closes: #644843
32 - Danish (Joe Hansen). Closes: #644854
33 - Italian (Luca Monducci). Closes: #645004
34 - Dutch; (Jeroen Schot). Closes: #645090
35 - Portuguese (Miguel Figueiredo). Closes: #645126
36 - Galician (Jorge Barreiro). Closes: #645138
37 - Catalan; (Jordi Mallach). Closes: #645182
38 - Brazilian Portuguese (Adriano Rafael Gomes). Closes: #645526
39 * Split Choices in debconf templates
40 * Add build-arch and build-indep build targets
41 * Bump debhelper compatibility level to 8
42 * Bump Standards to 3.9.2 (checked)
43 * Replace "dh_clean -k" by dh_prep
45 -- Christian Perrier <bubulle@debian.org> Sat, 22 Oct 2011 14:24:00 +0200
47 ca-certificates (20110502+nmu1) unstable; urgency=high
49 * Non-maintainer upload by the Security Team.
50 * Blacklist "DigiNotar Root CA" (Closes: #639744)
52 -- Raphael Geissert <geissert@debian.org> Tue, 30 Aug 2011 21:00:55 -0500
54 ca-certificates (20110502) unstable; urgency=low
57 * Mark the package as multi-arch:foreign. (Closes: #622323)
58 * Use db_settitle in config script to allow translations of the
59 dialog title; thanks to Frans Pop. (Closes: #560314)
61 -- Philipp Kern <pkern@debian.org> Mon, 02 May 2011 19:27:50 +0200
63 ca-certificates (20110421) unstable; urgency=low
66 * Package is orphaned, set maintainer to QA group
67 * Depend on openssl 1.0.0 and force a call of c_rehash so that we have
68 both the old and new style of symlinks. (Closes: #611102)
69 * Remove libssl0.9.8 from enhances
70 * Update mozilla certdata.txt file to the latest version.
72 - ABAecom_=sub.__Am._Bankers_Assn.=_Root_CA.crt
73 - beTRUSTed_Root_CA-Baltimore_Implementation.crt
74 - beTRUSTed_Root_CA.crt
75 - beTRUSTed_Root_CA_-_Entrust_Implementation.crt
76 - beTRUSTed_Root_CA_-_RSA_Implementation.crt
77 - Digital_Signature_Trust_Co._Global_CA_2.crt
78 - Digital_Signature_Trust_Co._Global_CA_4.crt
79 - Entrust.net_Global_Secure_Personal_CA.crt
80 - Entrust.net_Global_Secure_Server_CA.crt
81 - Entrust.net_Secure_Personal_CA.crt
82 - GTE_CyberTrust_Root_CA.crt
83 - IPS_Chained_CAs_root.crt
86 - IPS_CLASEA1_root.crt
87 - IPS_CLASEA3_root.crt
88 - IPS_Servidores_root.crt
89 - IPS_Timestamping_root.crt
90 - RSA_Security_1024_v3.crt
92 - Thawte_Personal_Basic_CA.crt
93 - Thawte_Personal_Premium_CA.crt
94 - UTN-USER_First-Network_Applications.crt
95 - Verisign_RSA_Secure_Server_CA.crt
96 - Verisign_Time_Stamping_Authority_CA.crt
97 - Visa_International_Global_Root_2.crt
100 - AC_Raíz_Certicámara_S.A..crt
101 - ApplicationCA_-_Japanese_Government.crt
102 - Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt
103 - Buypass_Class_2_CA_1.crt
104 - Buypass_Class_3_CA_1.crt
107 - certSIGN_ROOT_CA.crt
108 - Chambers_of_Commerce_Root_-_2008.crt
111 - ComSign_Secured_CA.crt
112 - Cybertrust_Global_Root.crt
113 - Deutsche_Telekom_Root_CA_2.crt
114 - EBG_Elektronik_Sertifika_Hizmet_Sağlayıcısı.crt
115 - E-Guven_Kok_Elektronik_Sertifika_Hizmet_Saglayicisi.crt
116 - ePKI_Root_Certification_Authority.crt
117 - GeoTrust_Primary_Certification_Authority_-_G2.crt
118 - GeoTrust_Primary_Certification_Authority_-_G3.crt
119 - Global_Chambersign_Root_-_2008.crt
120 - GlobalSign_Root_CA_-_R3.crt
121 - Hongkong_Post_Root_CA_1.crt
125 - Microsec_e-Szigno_Root_CA_2009.crt
126 - Microsec_e-Szigno_Root_CA.crt
127 - NetLock_Arany_=Class_Gold=_Főtanúsítvány.crt
128 - OISTE_WISeKey_Global_Root_GA_CA.crt
129 - SecureSign_RootCA11.crt
130 - Security_Communication_EV_RootCA1.crt
131 - Staat_der_Nederlanden_Root_CA_-_G2.crt
132 - S-TRUST_Authentication_and_Encryption_Root_CA_2005_PN.crt
133 - TÜBİTAK_UEKAE_Kök_Sertifika_Hizmet_Sağlayıcısı_-_Sürüm_3.crt
134 - TC_TrustCenter_Class_2_CA_II.crt
135 - TC_TrustCenter_Class_3_CA_II.crt
136 - TC_TrustCenter_Universal_CA_I.crt
137 - TC_TrustCenter_Universal_CA_III.crt
138 - thawte_Primary_Root_CA_-_G2.crt
139 - thawte_Primary_Root_CA_-_G3.crt
140 - VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.crt
141 - VeriSign_Universal_Root_Certification_Authority.crt
143 - Verisign_Class_1_Public_Primary_Certification_Authority.crt
144 - Verisign_Class_3_Public_Primary_Certification_Authority.crt
145 * Remove telesec.de/deutsche-telekom-root-ca-2.crt, now in mozilla.
146 * String decode the mozilla certdata.txt so the filenames show up as
147 proper UTF-8 strings.
149 -- Kurt Roeckx <kurt@roeckx.be> Thu, 21 Apr 2011 18:56:08 +0200
151 ca-certificates (20090814+nmu3) unstable; urgency=low
153 * Non-maintainer upload.
154 * Fix pending l10n issues. Debconf translations:
155 - French (Christian Perrier). Closes: #594231
156 - Danish (Joe Hansen). Closes: #601129
157 - Catalan (Jordi Mallach). Closes: #601089
158 - Brazilian Portuguese (Adriano Rafael Gomes). Closes: #618633
160 -- Christian Perrier <bubulle@debian.org> Sat, 19 Mar 2011 07:47:00 +0100
162 ca-certificates (20090814+nmu2) unstable; urgency=low
164 * Non-maintainer upload.
165 * Fixes buggy shell functions included in the postinst script.
168 -- Maximiliano Curia <maxy@debian.org> Fri, 13 Aug 2010 20:16:21 -0300
170 ca-certificates (20090814+nmu1) unstable; urgency=low
172 * Non-maintainer upload.
173 * Preserve user changes to the /etc/ca-certificates.conf.
176 -- Maximiliano Curia <maxy@debian.org> Fri, 30 Jul 2010 12:55:28 -0400
178 ca-certificates (20090814) unstable; urgency=low
180 * Call Debconf and its db_purge as early as possible in postrm.
183 -- Philipp Kern <pkern@debian.org> Fri, 14 Aug 2009 11:10:00 +0200
185 ca-certificates (20090709) unstable; urgency=low
187 * Fix purge by checking for `/etc/ssl/certs' first. (Closes: #536331)
189 -- Philipp Kern <pkern@debian.org> Thu, 09 Jul 2009 10:35:39 +0200
191 ca-certificates (20090708) unstable; urgency=low
194 - cacert.org/root.crt and cacert.org/class3.crt:
195 Both certificate files were deprecated with 20080809. Users of these
196 root certificates are encouraged to switch to
197 `cacert.org/cacert.org.crt' which contains both class 1 and class 3
198 roots joined in a single file.
199 - quovadis.bm/QuoVadis_Root_Certification_Authority.crt:
200 This certificate has been added into the Mozilla truststore and
201 is available as `mozilla/QuoVadis_Root_CA.crt'.
202 * Do not redirect c_rehash error messages to /dev/null.
204 * Remove dangling symlinks on purge, which also gets rid of the hash
205 symlink for ca-certificates.crt. (Closes: #475240)
206 * Use subshells when grepping for certificates in config, avoiding
207 SIGPIPE because of grep's immediate exit after it finds the pattern.
209 * Fix VERBOSE_ARG usage in update-ca-certificates. Thanks to
210 Robby Workman of Slackware.
211 * Updated Standards-Version and FSF portal address in the copyright file.
213 -- Philipp Kern <pkern@debian.org> Wed, 08 Jul 2009 23:19:56 +0200
215 ca-certificates (20090701) unstable; urgency=low
217 * Reactivated "Equifax Secure Global eBusiness CA". (Closes: #534674)
218 Rationale: The rogue collision CA has its validity period in the past.
219 Thus it does not impose a risk upon us at the moment.
220 * Restrict search for local certificates to add on files ending with '.crt'.
221 * Canonicalize PEM names by applying the same set of substitions to
222 local and other certificates like the Mozilla certdata dumper does.
224 -- Philipp Kern <pkern@debian.org> Wed, 01 Jul 2009 14:50:00 +0200
226 ca-certificates (20090624) unstable; urgency=low
228 * Allow local certificate installation. All certificates found
229 in `/usr/local/share/ca-certificates' will be automatically added
230 to the list of trusted certificates in `/etc/ssl/certs'.
231 (Closes: #352637, #419491, #473677, #476663, #511150)
232 * Updated Mozilla certificates from nss 3.12.3-1 (certdata.txt revision
234 + COMODO ECC Certification Authority
236 + Network Solutions Certificate Authority
237 + WellsSecure Public Root Certificate Authority
238 - Equifax Secure Global eBusiness CA
239 - UTN USERFirst Object Root CA
240 * Reimplemented the Mozilla certdata parser mainly to exclude explicitly
241 untrusted certificates. This led to the exclusion of the
242 "MD5 Collisions Forged Rogue CA 23c3" and its parent
243 "Equifax Secure Global eBusiness CA". Furthermore code signing-only
244 certificates are no longer included neither.
245 * Remove the purging of old PEM files in postinst dating back to
246 versions earlier than 20030414.
247 * Hooks are now called at every invocation of `update-ca-certificates'.
248 If no changes were done to `/etc/ssl/certs', the input for the
249 hooks will be empty, though. Failure exit codes of hooks will not
250 tear down the upgrade process anymore. They are printed but ignored.
252 -- Philipp Kern <pkern@debian.org> Tue, 24 Jun 2009 21:04:08 +0200
254 ca-certificates (20081127) unstable; urgency=low
256 * Remove /etc/ssl{,/certs} in postrm to please piuparts. (Closes:
259 -- Philipp Kern <pkern@debian.org> Thu, 27 Nov 2008 19:13:17 +0100
261 ca-certificates (20080809) unstable; urgency=low
263 * New cacert.org.pem joining both CACert Class 1 and Class 3 certificates.
264 This file can be used for proper certificate chaining if CACert
265 server certificates are used. The old class3.pem and root.pem
266 certificates are deprecated. This new file could safely serve as
267 a replacement for both. (Closes: #494343)
268 * This also reintroduces the old name for the CACert certificate,
269 thus closing a long-standing bug about its rename to root.crt.
272 -- Philipp Kern <pkern@debian.org> Sat, 09 Aug 2008 14:58:24 -0300
274 ca-certificates (20080617) unstable; urgency=low
276 * Added French Government's IGC/A CA (both DSA and RSA).
279 -- Philipp Kern <pkern@debian.org> Mon, 23 Jun 2008 20:55:53 +0200
281 ca-certificates (20080616) unstable; urgency=low
283 * Fix installation on pt_BR locales. The problem was caused by the
284 .templates choices strings being marked for translation, with pt_BR
285 being the only language which actually translated them. Thanks to
286 Ubuntu for the fix, which needs to be around until Lenny is released
287 or six months have passed, whichever is later. (Closes: #472507)
288 * Drop Fumitoshi from the list of maintainers. Farewell!
289 * Bump Standards-Version to 3.8.0.
291 -- Philipp Kern <pkern@debian.org> Mon, 16 Jun 2008 17:41:50 +0200
293 ca-certificates (20080514) unstable; urgency=medium
295 * Added the new SPI CA certificate, created in response to the latest
296 openssl security update.
297 * Removed old SPI CA certificates (2006, 2007) as CAs cannot be
298 revoked sensibly. Expired CA created in 2003, expired in 2007 left
299 around for reference.
300 * Updated the Galician translation, thanks to Glennie Vignarajah.
303 -- Philipp Kern <pkern@debian.org> Wed, 14 May 2008 10:03:42 +0200
305 ca-certificates (20080411) unstable; urgency=low
307 * Added the current SPI CA certificate, used by Debian's infrastructure.
308 * Added Deutsche Telekom Root CA 2, which is used by German institutions
310 * Updated mozilla certificates from trunk, which led to the following
311 adds (+) and removes (-):
312 + Camerfirma Chambers of Commerce Root
313 + Camerfirma Global Chambersign Root
314 + Certplus Class 2 Primary CA
315 + COMODO Certification Authority
316 + DigiCert Assured ID Root CA
317 + DigiCert Global Root CA
318 + DigiCert High Assurance EV Root CA
321 + Entrust Root Certification Authority
322 + Firmaprofesional Root CA
323 + GeoTrust Global CA 2
324 + GeoTrust Primary Certification Authority
325 + GeoTrust Universal CA
326 + GeoTrust Universal CA 2
327 + GlobalSign Root CA - R2
328 + Go Daddy Class 2 CA
329 + NetLock Business (Class B) Root
330 + NetLock Express (Class C) Root
331 + NetLock Notary (Class A) Root
332 + NetLock Qualified (Class QA) Root
337 + Starfield Class 2 CA
338 + StartCom Certification Authority
341 + SwissSign Gold CA - G2
342 + SwissSign Platinum CA - G2
343 + SwissSign Silver CA - G2
345 + thawte Primary Root CA
346 + TURKTRUST Certificate Services Provider Root 1
347 + TURKTRUST Certificate Services Provider Root 2
348 + VeriSign Class 3 Public Primary Certification Authority - G5
349 + Wells Fargo Root CA
350 + XRamp Global CA Root
351 - Verisign Class 1 Public Primary OCSP Responder
352 - Verisign Class 2 Public Primary OCSP Responder
353 - Verisign Class 3 Public Primary OCSP Responder
354 - Verisign Secure Server OCSP Responder
355 (Closes: #447062, #456581)
356 * Updated the Russian debconf translation, thanks to Mikhail Gusarov.
358 * Reworded the description and made it static to ease translations.
359 * Reworded and amended README.Debian.
360 * Added myself to the uploaders of this package.
361 * Applied a patch by Martin F. Krafft to support hooks scripts
362 on add/remove of a certificate. (Closes: #377314)
364 -- Philipp Kern <pkern@debian.org> Sat, 12 Apr 2008 17:35:26 +0200
366 ca-certificates (20070303-0.1) unstable; urgency=low
368 * Non-maintainer upload to fix longstanding pending l10n issues.
369 * Debconf templates and debian/control reviewed by the debian-l10n-
370 english team as part of the Smith review project.
371 Closes: #432249, #434789
372 * Debconf translation updates:
373 - Japanese. Closes:#433067
374 - Basque. Closes: #433074
375 - Spanish. Closes: #433078
376 - Czech. Closes: #433100
377 - Galician. Closes: #433215
378 - Russian. Closes: #433224
379 - Swedish. Closes: #433432
380 - Vietnamese. Closes: #433792, #427000, #434992
381 - Dutch. Closes: #434670
382 - German. Closes: #434788
383 - Italian. Closes: #435029
384 * Portuguese. Closes: #435471
385 * Finnish. Closes: #448826
386 * Remove /etc/ssl when purging the package (only if that
387 directory is empty). Closes: #454334
388 * [Lintian] Give a reference to the GPL text in debian/copyright
389 * [Lintian] No longer ignore errors from "make clean"
390 * [Lintian] Upgrade debhelper compatibility to 4 (with debian/compat).
392 -- Christian Perrier <bubulle@debian.org> Thu, 14 Feb 2008 19:52:37 +0100
394 ca-certificates (20070303) unstable; urgency=low
396 * Add debconf.org crt. closes: Bug#342088
397 * Add cacert class3 crt. closes: Bug#350282
398 * Add debian/po/pt.po. closes: Bug#408183
399 * Update debian/po/ru.po. closes: Bug#410770
400 * Update debian/po/pt_BR.po. closes: Bug#403824
401 * Add debian/po/gl.po. closes: Bug#407951
403 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 4 Mar 2007 14:12:23 +0900
405 ca-certificates (20061027.2) unstable; urgency=low
407 * Non-maintainer upload to fix an RC issue revealed by the last NMU.
408 * Avoid cd to /etc/ssl/certs to removing hash symlinks
411 -- Christian Perrier <bubulle@debian.org> Fri, 2 Feb 2007 07:23:27 +0100
413 ca-certificates (20061027.1) unstable; urgency=low
415 * Non-maintainer upload to fix remaining l10n issues
416 * Debconf translation updates:
417 - Czech. Closes: #407807
418 - Spanish. Closes: #401968
419 - German. Closes: #396942
420 * Add debconf-updatepo to the clean target in debian/rules
421 to guarantee up-to-date PO(T) files
423 -- Christian Perrier <bubulle@debian.org> Mon, 22 Jan 2007 18:56:53 +0100
426 ca-certificates (20061027) unstable; urgency=low
428 * sbin/update-ca-certificates:
429 in fresh mode, rm symlinks only point to /usr/share/ca-certificates.
430 preserve other symlinks. closes: Bug#387089
431 * debian/po/nl.po: updated
433 * debian/po/fr.po: updated
435 * debian/po/da.po: updated
438 -- Fumitoshi UKAI <ukai@debian.or.jp> Sat, 28 Oct 2006 02:28:50 +0900
440 ca-certificates (20060816) unstable; urgency=low
442 * debian/control: explicitly mention that trustworthiness of certificate
443 authorities is not evaluated.
445 * debian/templates: refine messages
447 * debian/postinst: remove tailing spaces to avoid unnecessary dpkg-old file.
449 * debian/control: libssl0.9.7->libssl0.9.8
451 * debian/postrm: remove .dpkg-old files
453 * debian/README.Debian: fix
455 * debian/postinst: fix typo
457 * debian/po/sv.po: added
459 * debian/po/es.po: added
461 * add new SPI CA certificate
462 submitted by Michael C. Schultheiss <schultmc@debian.org>
464 -- Fumitoshi UKAI <ukai@debian.or.jp> Thu, 17 Aug 2006 13:12:27 +0900
466 ca-certificates (20050804) unstable; urgency=low
468 * use ${misc:Depends} in debian/control for debconf
469 * update description in debian/control
471 * update debian/po/vi.po
473 * update debian/po/de.po
476 -- Fumitoshi UKAI <ukai@debian.or.jp> Thu, 4 Aug 2005 01:29:38 +0900
478 ca-certificates (20050518) unstable; urgency=high
480 * fix ca-certificates.crt generationumask-sensitive and racy
482 * update mozilla/certdata.txt
483 add: "Certum Root CA", "Comodo AAA Services root"
484 "Comodo Secure Services root",
485 "Comodo Trusted Services root",
486 "IPS Chained CAs root", "IPS CLASE1 root", "IPS CLASE3 root",
487 "IPS CLASEA1 root", "IPS CLASEA3 root", "IPS Servidores root"
488 "IPS Timestamping root",
490 "Security Communication Root CA",
491 "Sonera Class 1 Root CA", "Sonera Class 2 Root CA",
492 "Staat der Nederlanden Root CA",
493 "TDC Internet Root CA", "TDC OCES Root CA",
494 "UTN DATACorp SGC Root CA", "UTN USERFirst Email Root CA",
495 "UTN USERFirst Hardware Root CA", "UTN USERFirst Object Root CA"
496 * add CACert.org's Root CA
497 closes: Bug#213086, Bug#288293
498 * add debian/po/vi.po
500 * add debian/po/cs.po
502 * write "How certificate will be accepted in ca-certificates package"
505 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 18 May 2005 00:40:54 +0900
507 ca-certificates (20040809) unstable; urgency=low
509 * previous version was not fixed Bug#255933 correctly.
510 update-ca-certificates now remove symlinks of deselected entries
511 in ca-certificates.conf
514 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 9 Aug 2004 03:23:20 +0900
516 ca-certificates (20040808) unstable; urgency=low
518 * run update-ca-certificates by /bin/sh -e
520 * update-ca-certificates remove symlinks of deselected entries
521 in ca-certificates.conf
523 * change default of trust_new_crts from 'ask' to 'yes'
524 closes: Bug#218838, Bug#221527, Bug#236675, Bug#247509
525 * refer libssl0.9.7 instead of libssl0.9.6 in Enhances:
527 * add brasil.gov.br certs
529 * add Signet CA Roots certs
531 * add QuoVadis CA Roots certs
543 * fix quote characters in template
545 * remove debian.org, because certs used in db.debian.org has been
546 revoked due to debian.org crack incidents.
547 db.debian.org uses certificates using spi-inc.org Root CA.
549 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 8 Aug 2004 10:58:30 +0900
551 ca-certificates (20031007.1) unstable; urgency=low
554 * Add brasil.gov.br/brasil.gov.br.crt, created from
555 http://www.icpbrasil.gov.br/certificadoACRaiz.crt
556 * Add debian/po/pt_BR.po: closes: Bug#224612
558 -- Otavio Salvador <otavio@debian.org> Thu, 5 Aug 2004 12:16:26 -0300
560 ca-certificates (20031007) unstable; urgency=low
562 * add debian/po/ru.po: closes: Bug#214371
564 -- Fumitoshi UKAI <ukai@debian.or.jp> Tue, 7 Oct 2003 03:06:06 +0900
566 ca-certificates (20030924) unstable; urgency=low
568 * add debian/po/ja.po: closes: Bug#212565
570 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 24 Sep 2003 22:09:09 +0900
572 ca-certificates (20030916) unstable; urgency=low
574 * add debian/po/fr.po: closes: Bug#211224, Bug#206769
575 * debian/config: if new cert is asked, don't ask all available certs
578 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 17 Sep 2003 02:12:14 +0900
580 ca-certificates (20030915) unstable; urgency=low
582 * debian/config.in: fix typo. closes: Bug#190990
583 * add option for new CA certificates. closes: Bug#190989
584 * switch to gettext-based debconf templates. closes: Bug#205782
585 * update mozilla/certdata.txt from mozilla 1.4 release
587 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 15 Sep 2003 01:15:04 +0900
589 ca-certificates (20030420) unstable; urgency=low
591 * add README.Debian and update-ca-certificates(8). closes: Bug#189604
592 * fix broken English in debconf template. closes: Bug#189606
593 * don't remove symlinks in /etc/ssl/certs. closes: Bug#189607
594 * preserve comments in /etc/ca-certificates.conf when upgrading.
597 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 21 Apr 2003 00:06:01 +0900
599 ca-certificates (20030415) unstable; urgency=medium
601 * fix upgrade problem
602 closes: Bug#188938, Bug#188940
605 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 14 Apr 2003 23:00:58 +0900
607 ca-certificates (20030414) unstable; urgency=medium
609 * certificates are installed in /usr/share/ca-certificates
610 you can find md5sum of certs files. closes: Bug#170777
612 * debconf to generate /etc/ca-certificates.conf
613 * update-ca-certificates update /etc/ssl/certs according
614 /etc/ca-certificates.conf
615 It also generate /etc/ssl/certs/ca-certificates.crt
616 which is single-file version of certs.
619 * change extension from .pem to .crt in /usr/share/ca-certificates
621 application/x-x509-ca-cert crt
622 but it will be hardlink or copied in /etc/ssl/certs with .pem
623 extension by update-ca-certificates.
624 c_rehash requires .pem extension
626 * Update certificate from mozilla 2:1.3-4
627 mozilla/security/nss/lib/ckfw/builtins/certdata.txt
628 cefd05b299ea683fc6b1ce9ff1e23a3f mozilla/certdata.txt
630 * Add spi-inc.org/spi-ca.crt from http://www.spi-inc.org/secretary/
631 33922a1660820e44812e7ddc392878cb spi-inc.org/spi-ca.crt
632 % openssl x509 -in spi-inc.org/spi-ca.crt -fingerprint -noout
633 MD5 Fingerprint=ED:85:3A:FD:32:43:13:73:91:4D:94:06:C4:10:EB:E5
635 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 14 Apr 2003 00:02:48 +0900
637 ca-certificates (20020323) unstable; urgency=low
639 * Moved from non-US to main now that openssl has moved there.
641 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 24 Mar 2002 03:11:54 +0900
643 ca-certificates (20020208) unstable; urgency=low
645 * add db.debian.org certificate
647 -- Fumitoshi UKAI <ukai@debian.or.jp> Fri, 8 Feb 2002 23:46:11 +0900
649 ca-certificates (20020112) unstable; urgency=low
651 * upload to non-US instead of main, because it depends on openssl
652 (it uses c_rehash in openssl in maintainer scripts)
654 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 13 Jan 2002 04:30:28 +0900
656 ca-certificates (20020107) unstable; urgency=low
658 * Initial Release. closes: Bug#126586
660 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 7 Jan 2002 21:16:51 +0900