linux-from-scratch/glfs
1
0
Fork 0
mirror of https://github.com/Zeckmathederg/glfs.git synced 2025-01-24 15:12:11 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

make-ca: Add a note about hg.mozilla.org trust chain update

Browse Source 
Why are they using a new trust chain even when the old root CA is not
expired?
This commit is contained in:
Xi Ruoyao 2023-09-27 13:36:23 +08:00
parent ddb61e934c
commit 24be2b6f93
No known key found for this signature in database
GPG Key ID: ACAAD20E19E710E3
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
postlfs/security/make-ca.xml
View File

@ -79,6 +79,18 @@
</listitem>
</itemizedlist>
<note>
<para>
This package ships a CA certificate for validating the identity of
<ulink url='&certhost;'/>. If the trust chain of this website
has been changed after the release of make-ca-&make-ca-version;,
it may fail to get the revision of <filename>certdata.txt</filename>
from server. Use an updated make-ca release at
<ulink url='https://github.com/lfs-book/make-ca/releases'>the
release page</ulink> if this issue happens.
</para>
</note>
<bridgehead renderas="sect3">make-ca Dependencies</bridgehead>
<bridgehead renderas="sect4">Required</bridgehead>