I've been reading Alien BOB's instructions for adding CAcert root certificates to my Slacware:


https://alien.slackbook.org/blog/adding-cacert-root-certificates-to-your-slackware/

But I have a question.

Wouldn't it be better:

1. Copy CAcert's files (with .crt extension) in /usr/local/share/ca-certificates/
   
2. Run /usr/sbin/update-ca-certificates --fresh

Anyway, when the package ca-certificates-YYYYMMDD-noarch-n_slacknn.n.txz gets updated, the links will be deleted and lost. Or am I wrong with something?

Why would this be better? Some of us don't use /usr/local.

Links are not deleted or lost.

This works different than I expected...

I thought that on every update of the ca-certificates package all the links in /etc/ssl/certs/ would be deleted after a new /etc/ca-certificates.conf would be read and processed. So, the links to the CAcert root and class 3 .crt files would be lost.

To my surprise, after deleting the two links to the .crt files placed in /etc/ssl/certs/, /usr/sbin/update-ca-certificates --fresh (which is called by doinst.sh) linked them again.

I thought these files would only be linked again if placed under /usr/local/share/ca-certificates/

If done so, the resulting hashes in /etc/ssl/certs/ link to two .pem files which are also links to the certificates in /usr/local/share/ca-certificates/

An unexpected result, and where's the difference?