Warnings about untrusted certificates while compiling ca-certificates
I just compiled ca-certificates on LFS, using a PKGBUILD from Arch (sources: ca-certificates-20130119). The output from make made me a bit worried.
Code:
make[1]: Entering directory `/home/packages/pkgbuilds/ca-certificates/src/ca-certificates-20130119/mozilla' |
It appears to me just from looking at the output that these certificates are intended to be bogus. That they are intended as a test of bogosity-detection.
It's time to go to a reliable source: the documentation for what you're doing. |
I don't understand... Should I remove them and install from somewhere else? The source are from Debian, shouldn't it be trustworthy? I don't understand how to make a package from the instructions in blfs, and I don't like to install things without the package manager. But if keeping this is risky, then maybe I should do an exception and just install this package from blfs even without packagemanager.
Can someone please confirm, should I remove this package and install from another source? I thought it was maybe like when Firefox warn about an untrusted site, and give me the choice to go there anyway or to cancel... |
I installed the version from blfs instead, and one of those scripts searched for untrusted certificates and removed them.
|
Thanks for posting your solution!
|
All times are GMT -5. The time now is 10:59 AM. |