1 ca-certificates (20080514) unstable; urgency=medium
3 * Added the new SPI CA certificate, created in response to the latest
4 openssl security update.
5 * Removed old SPI CA certificates (2006, 2007) as CAs cannot be
6 revoked sensibly. Expired CA created in 2003, expired in 2007 left
8 * Updated the Galician translation, thanks to Glennie Vignarajah.
11 -- Philipp Kern <pkern@debian.org> Wed, 14 May 2008 10:03:42 +0200
13 ca-certificates (20080411) unstable; urgency=low
15 * Added the current SPI CA certificate, used by Debian's infrastructure.
16 * Added Deutsche Telekom Root CA 2, which is used by German institutions
18 * Updated mozilla certificates from trunk, which led to the following
19 adds (+) and removes (-):
20 + Camerfirma Chambers of Commerce Root
21 + Camerfirma Global Chambersign Root
22 + Certplus Class 2 Primary CA
23 + COMODO Certification Authority
24 + DigiCert Assured ID Root CA
25 + DigiCert Global Root CA
26 + DigiCert High Assurance EV Root CA
29 + Entrust Root Certification Authority
30 + Firmaprofesional Root CA
31 + GeoTrust Global CA 2
32 + GeoTrust Primary Certification Authority
33 + GeoTrust Universal CA
34 + GeoTrust Universal CA 2
35 + GlobalSign Root CA - R2
37 + NetLock Business (Class B) Root
38 + NetLock Express (Class C) Root
39 + NetLock Notary (Class A) Root
40 + NetLock Qualified (Class QA) Root
45 + Starfield Class 2 CA
46 + StartCom Certification Authority
49 + SwissSign Gold CA - G2
50 + SwissSign Platinum CA - G2
51 + SwissSign Silver CA - G2
53 + thawte Primary Root CA
54 + TURKTRUST Certificate Services Provider Root 1
55 + TURKTRUST Certificate Services Provider Root 2
56 + VeriSign Class 3 Public Primary Certification Authority - G5
58 + XRamp Global CA Root
59 - Verisign Class 1 Public Primary OCSP Responder
60 - Verisign Class 2 Public Primary OCSP Responder
61 - Verisign Class 3 Public Primary OCSP Responder
62 - Verisign Secure Server OCSP Responder
63 (Closes: #447062, #456581)
64 * Updated the Russian debconf translation, thanks to Mikhail Gusarov.
66 * Reworded the description and made it static to ease translations.
67 * Reworded and amended README.Debian.
68 * Added myself to the uploaders of this package.
69 * Applied a patch by Martin F. Krafft to support hooks scripts
70 on add/remove of a certificate. (Closes: #377314)
72 -- Philipp Kern <pkern@debian.org> Sat, 12 Apr 2008 17:35:26 +0200
74 ca-certificates (20070303-0.1) unstable; urgency=low
76 * Non-maintainer upload to fix longstanding pending l10n issues.
77 * Debconf templates and debian/control reviewed by the debian-l10n-
78 english team as part of the Smith review project.
79 Closes: #432249, #434789
80 * Debconf translation updates:
81 - Japanese. Closes:#433067
82 - Basque. Closes: #433074
83 - Spanish. Closes: #433078
84 - Czech. Closes: #433100
85 - Galician. Closes: #433215
86 - Russian. Closes: #433224
87 - Swedish. Closes: #433432
88 - Vietnamese. Closes: #433792, #427000, #434992
89 - Dutch. Closes: #434670
90 - German. Closes: #434788
91 - Italian. Closes: #435029
92 * Portuguese. Closes: #435471
93 * Finnish. Closes: #448826
94 * Remove /etc/ssl when purging the package (only if that
95 directory is empty). Closes: #454334
96 * [Lintian] Give a reference to the GPL text in debian/copyright
97 * [Lintian] No longer ignore errors from "make clean"
98 * [Lintian] Upgrade debhelper compatibility to 4 (with debian/compat).
100 -- Christian Perrier <bubulle@debian.org> Thu, 14 Feb 2008 19:52:37 +0100
102 ca-certificates (20070303) unstable; urgency=low
104 * Add debconf.org crt. closes: Bug#342088
105 * Add cacert class3 crt. closes: Bug#350282
106 * Add debian/po/pt.po. closes: Bug#408183
107 * Update debian/po/ru.po. closes: Bug#410770
108 * Update debian/po/pt_BR.po. closes: Bug#403824
109 * Add debian/po/gl.po. closes: Bug#407951
111 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 4 Mar 2007 14:12:23 +0900
113 ca-certificates (20061027.2) unstable; urgency=low
115 * Non-maintainer upload to fix an RC issue revealed by the last NMU.
116 * Avoid cd to /etc/ssl/certs to removing hash symlinks
119 -- Christian Perrier <bubulle@debian.org> Fri, 2 Feb 2007 07:23:27 +0100
121 ca-certificates (20061027.1) unstable; urgency=low
123 * Non-maintainer upload to fix remaining l10n issues
124 * Debconf translation updates:
125 - Czech. Closes: #407807
126 - Spanish. Closes: #401968
127 - German. Closes: #396942
128 * Add debconf-updatepo to the clean target in debian/rules
129 to guarantee up-to-date PO(T) files
131 -- Christian Perrier <bubulle@debian.org> Mon, 22 Jan 2007 18:56:53 +0100
134 ca-certificates (20061027) unstable; urgency=low
136 * sbin/update-ca-certificates:
137 in fresh mode, rm symlinks only point to /usr/share/ca-certificates.
138 preserve other symlinks. closes: Bug#387089
139 * debian/po/nl.po: updated
141 * debian/po/fr.po: updated
143 * debian/po/da.po: updated
146 -- Fumitoshi UKAI <ukai@debian.or.jp> Sat, 28 Oct 2006 02:28:50 +0900
148 ca-certificates (20060816) unstable; urgency=low
150 * debian/control: explicitly mention that trustworthiness of certificate
151 authorities is not evaluated.
153 * debian/templates: refine messages
155 * debian/postinst: remove tailing spaces to avoid unnecessary dpkg-old file.
157 * debian/control: libssl0.9.7->libssl0.9.8
159 * debian/postrm: remove .dpkg-old files
161 * debian/README.Debian: fix
163 * debian/postinst: fix typo
165 * debian/po/sv.po: added
167 * debian/po/es.po: added
169 * add new SPI CA certificate
170 submitted by Michael C. Schultheiss <schultmc@debian.org>
172 -- Fumitoshi UKAI <ukai@debian.or.jp> Thu, 17 Aug 2006 13:12:27 +0900
174 ca-certificates (20050804) unstable; urgency=low
176 * use ${misc:Depends} in debian/control for debconf
177 * update description in debian/control
179 * update debian/po/vi.po
181 * update debian/po/de.po
184 -- Fumitoshi UKAI <ukai@debian.or.jp> Thu, 4 Aug 2005 01:29:38 +0900
186 ca-certificates (20050518) unstable; urgency=high
188 * fix ca-certificates.crt generationumask-sensitive and racy
190 * update mozilla/certdata.txt
191 add: "Certum Root CA", "Comodo AAA Services root"
192 "Comodo Secure Services root",
193 "Comodo Trusted Services root",
194 "IPS Chained CAs root", "IPS CLASE1 root", "IPS CLASE3 root",
195 "IPS CLASEA1 root", "IPS CLASEA3 root", "IPS Servidores root"
196 "IPS Timestamping root",
198 "Security Communication Root CA",
199 "Sonera Class 1 Root CA", "Sonera Class 2 Root CA",
200 "Staat der Nederlanden Root CA",
201 "TDC Internet Root CA", "TDC OCES Root CA",
202 "UTN DATACorp SGC Root CA", "UTN USERFirst Email Root CA",
203 "UTN USERFirst Hardware Root CA", "UTN USERFirst Object Root CA"
204 * add CACert.org's Root CA
205 closes: Bug#213086, Bug#288293
206 * add debian/po/vi.po
208 * add debian/po/cs.po
210 * write "How certificate will be accepted in ca-certificates package"
213 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 18 May 2005 00:40:54 +0900
215 ca-certificates (20040809) unstable; urgency=low
217 * previous version was not fixed Bug#255933 correctly.
218 update-ca-certificates now remove symlinks of deselected entries
219 in ca-certificates.conf
222 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 9 Aug 2004 03:23:20 +0900
224 ca-certificates (20040808) unstable; urgency=low
226 * run update-ca-certificates by /bin/sh -e
228 * update-ca-certificates remove symlinks of deselected entries
229 in ca-certificates.conf
231 * change default of trust_new_crts from 'ask' to 'yes'
232 closes: Bug#218838, Bug#221527, Bug#236675, Bug#247509
233 * refer libssl0.9.7 instead of libssl0.9.6 in Enhances:
235 * add brasil.gov.br certs
237 * add Signet CA Roots certs
239 * add QuoVadis CA Roots certs
251 * fix quote characters in template
253 * remove debian.org, because certs used in db.debian.org has been
254 revoked due to debian.org crack incidents.
255 db.debian.org uses certificates using spi-inc.org Root CA.
257 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 8 Aug 2004 10:58:30 +0900
259 ca-certificates (20031007.1) unstable; urgency=low
262 * Add brasil.gov.br/brasil.gov.br.crt, created from
263 http://www.icpbrasil.gov.br/certificadoACRaiz.crt
264 * Add debian/po/pt_BR.po: closes: Bug#224612
266 -- Otavio Salvador <otavio@debian.org> Thu, 5 Aug 2004 12:16:26 -0300
268 ca-certificates (20031007) unstable; urgency=low
270 * add debian/po/ru.po: closes: Bug#214371
272 -- Fumitoshi UKAI <ukai@debian.or.jp> Tue, 7 Oct 2003 03:06:06 +0900
274 ca-certificates (20030924) unstable; urgency=low
276 * add debian/po/ja.po: closes: Bug#212565
278 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 24 Sep 2003 22:09:09 +0900
280 ca-certificates (20030916) unstable; urgency=low
282 * add debian/po/fr.po: closes: Bug#211224, Bug#206769
283 * debian/config: if new cert is asked, don't ask all available certs
286 -- Fumitoshi UKAI <ukai@debian.or.jp> Wed, 17 Sep 2003 02:12:14 +0900
288 ca-certificates (20030915) unstable; urgency=low
290 * debian/config.in: fix typo. closes: Bug#190990
291 * add option for new CA certificates. closes: Bug#190989
292 * switch to gettext-based debconf templates. closes: Bug#205782
293 * update mozilla/certdata.txt from mozilla 1.4 release
295 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 15 Sep 2003 01:15:04 +0900
297 ca-certificates (20030420) unstable; urgency=low
299 * add README.Debian and update-ca-certificates(8). closes: Bug#189604
300 * fix broken English in debconf template. closes: Bug#189606
301 * don't remove symlinks in /etc/ssl/certs. closes: Bug#189607
302 * preserve comments in /etc/ca-certificates.conf when upgrading.
305 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 21 Apr 2003 00:06:01 +0900
307 ca-certificates (20030415) unstable; urgency=medium
309 * fix upgrade problem
310 closes: Bug#188938, Bug#188940
313 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 14 Apr 2003 23:00:58 +0900
315 ca-certificates (20030414) unstable; urgency=medium
317 * certificates are installed in /usr/share/ca-certificates
318 you can find md5sum of certs files. closes: Bug#170777
320 * debconf to generate /etc/ca-certificates.conf
321 * update-ca-certificates update /etc/ssl/certs according
322 /etc/ca-certificates.conf
323 It also generate /etc/ssl/certs/ca-certificates.crt
324 which is single-file version of certs.
327 * change extension from .pem to .crt in /usr/share/ca-certificates
329 application/x-x509-ca-cert crt
330 but it will be hardlink or copied in /etc/ssl/certs with .pem
331 extension by update-ca-certificates.
332 c_rehash requires .pem extension
334 * Update certificate from mozilla 2:1.3-4
335 mozilla/security/nss/lib/ckfw/builtins/certdata.txt
336 cefd05b299ea683fc6b1ce9ff1e23a3f mozilla/certdata.txt
338 * Add spi-inc.org/spi-ca.crt from http://www.spi-inc.org/secretary/
339 33922a1660820e44812e7ddc392878cb spi-inc.org/spi-ca.crt
340 % openssl x509 -in spi-inc.org/spi-ca.crt -fingerprint -noout
341 MD5 Fingerprint=ED:85:3A:FD:32:43:13:73:91:4D:94:06:C4:10:EB:E5
343 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 14 Apr 2003 00:02:48 +0900
345 ca-certificates (20020323) unstable; urgency=low
347 * Moved from non-US to main now that openssl has moved there.
349 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 24 Mar 2002 03:11:54 +0900
351 ca-certificates (20020208) unstable; urgency=low
353 * add db.debian.org certificate
355 -- Fumitoshi UKAI <ukai@debian.or.jp> Fri, 8 Feb 2002 23:46:11 +0900
357 ca-certificates (20020112) unstable; urgency=low
359 * upload to non-US instead of main, because it depends on openssl
360 (it uses c_rehash in openssl in maintainer scripts)
362 -- Fumitoshi UKAI <ukai@debian.or.jp> Sun, 13 Jan 2002 04:30:28 +0900
364 ca-certificates (20020107) unstable; urgency=low
366 * Initial Release. closes: Bug#126586
368 -- Fumitoshi UKAI <ukai@debian.or.jp> Mon, 7 Jan 2002 21:16:51 +0900