pkgsrc/security/mozilla-rootcerts/MESSAGE

===========================================================================
$NetBSD: MESSAGE,v 1.4 2013/03/15 16:14:55 bsiegert Exp $

Execute this command to extract and rehash all CA root certificates
distributed by the Mozilla Project, so that they can be used by third
party applications using OpenSSL. It also creates a single file
certificate bundle in PEM format which can be used by applications using
GnuTLS.

	# mozilla-rootcerts install

To mark these certificates as trusted for users of gnupg2, do
the following (assuming default PKG_SYSCONFBASE and a Bourne shell):

	# mkdir /usr/pkg/etc/gnupg
	# cd /usr/pkg/etc/gnupg
	# for c in /etc/openssl/certs/*.pem; do
	> openssl x509 -in $c -noout -fingerprint|sed 's|^.*=\(.*\)|\1 S|'
	> done > trustlist.txt
===========================================================================
Add MESSAGE to give a hint on what to do (~copy/pasted from script) 2011-01-31 04:05:17 +01:00			`===========================================================================`
Add a new subcommand "mozilla-rootcerts install" that unpacks and installs the certificates with a single command. ok gdt, wiz 2013-03-15 17:14:55 +01:00			$NetBSD: MESSAGE,v 1.4 2013/03/15 16:14:55 bsiegert Exp $
Add MESSAGE to give a hint on what to do (~copy/pasted from script) 2011-01-31 04:05:17 +01:00
Add a new subcommand "mozilla-rootcerts install" that unpacks and installs the certificates with a single command. ok gdt, wiz 2013-03-15 17:14:55 +01:00			`Execute this command to extract and rehash all CA root certificates`
Add MESSAGE to give a hint on what to do (~copy/pasted from script) 2011-01-31 04:05:17 +01:00			`distributed by the Mozilla Project, so that they can be used by third`
Add a new subcommand "mozilla-rootcerts install" that unpacks and installs the certificates with a single command. ok gdt, wiz 2013-03-15 17:14:55 +01:00			`party applications using OpenSSL. It also creates a single file`
			`certificate bundle in PEM format which can be used by applications using`
			`GnuTLS.`
Add MESSAGE to give a hint on what to do (~copy/pasted from script) 2011-01-31 04:05:17 +01:00
Add a new subcommand "mozilla-rootcerts install" that unpacks and installs the certificates with a single command. ok gdt, wiz 2013-03-15 17:14:55 +01:00			`# mozilla-rootcerts install`
add a hint for gnupg2 users (as claws-mail with the s/mime plugin) 2011-06-10 18:23:45 +02:00
			`To mark these certificates as trusted for users of gnupg2, do`
			`the following (assuming default PKG_SYSCONFBASE and a Bourne shell):`

			`# mkdir /usr/pkg/etc/gnupg`
			`# cd /usr/pkg/etc/gnupg`
			`# for c in /etc/openssl/certs/*.pem; do`
			`> openssl x509 -in $c -noout -fingerprint\|sed 's\|^.=\(.\)\|\1 S\|'`
			`> done > trustlist.txt`
Add MESSAGE to give a hint on what to do (~copy/pasted from script) 2011-01-31 04:05:17 +01:00			`===========================================================================`