1. 16 Feb, 2014 1 commit
  2. 15 Feb, 2014 1 commit
  3. 12 Feb, 2014 1 commit
  4. 05 Feb, 2014 1 commit
  5. 31 Jan, 2014 1 commit
  6. 30 Jan, 2014 2 commits
  7. 29 Jan, 2014 2 commits
  8. 27 Jan, 2014 2 commits
  9. 26 Jan, 2014 2 commits
  10. 23 Jan, 2014 5 commits
  11. 22 Jan, 2014 1 commit
    • fedor.brunner's avatar
      New set of CA certificates is in cacert.pem, used only on Windows. · b8a28261
      fedor.brunner authored
      These CA certificates were copied from debian ca-certificates, which uses
      certificates from Mozilla's trust store.
      
      spi CA certificate has be removed, no server in xmpp.net list uses this
      CA certificate.
      https://xmpp.net/directory.php
      
      I have removed these CA certificates with 1024-bit RSA public keys,
      because Mozilla is planning to remove them in Q1 2014 :
      
      Digital_Signature_Trust_Co._Global_CA_1.crt
      Digital_Signature_Trust_Co._Global_CA_3.crt
      Entrust.net_Secure_Server_CA.crt
      Equifax_Secure_CA.crt
      Equifax_Secure_eBusiness_CA_1.crt
      Equifax_Secure_Global_eBusiness_CA.crt
      GTE_CyberTrust_Global_Root.crt
      NetLock_Business_=Class_B=_Root.crt
      NetLock_Express_=Class_C=_Root.crt
      RSA_Root_Certificate_1.crt
      Thawte_Premium_Server_CA.crt
      Thawte_Server_CA.crt
      ValiCert_Class_1_VA.crt
      ValiCert_Class_2_VA.crt
      Verisign_Class_1_Public_Primary_Certification_Authority.crt
      Verisign_Class_1_Public_Primary_Certification_Authority_-_G2.crt
      Verisign_Class_2_Public_Primary_Certification_Authority_-_G2.crt
      Verisign_Class_3_Public_Primary_Certification_Authority.crt
      Verisign_Class_3_Public_Primary_Certification_Authority_-_G2.crt
      
      See:
      https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/
      https://wiki.mozilla.org/CA:MD5and1024
      
      I'm also removing TurkTrust CA certificates because of this security
      incident:
      https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/
      
      TURKTRUST_Certificate_Services_Provider_Root_1.crt
      TURKTRUST_Certificate_Services_Provider_Root_2007.crt
      TURKTRUST_Certificate_Services_Provider_Root_2.crt
      
      other/cacert.pem is used only on Windows. On Unix platforms
      use CA certificates installed in /etc/ssl/certs
      (python-nbxmpp loads CA certificates from /etc/ssl/certs directory)
      
      Fixes #7629
      b8a28261
  12. 21 Jan, 2014 3 commits
  13. 18 Jan, 2014 1 commit
  14. 14 Jan, 2014 1 commit
  15. 13 Jan, 2014 1 commit
  16. 10 Jan, 2014 1 commit
  17. 07 Jan, 2014 1 commit
  18. 05 Jan, 2014 1 commit
  19. 03 Jan, 2014 1 commit
  20. 02 Jan, 2014 1 commit
  21. 01 Jan, 2014 2 commits
  22. 31 Dec, 2013 1 commit
  23. 29 Dec, 2013 1 commit
  24. 16 Sep, 2013 1 commit
  25. 27 Dec, 2013 2 commits
  26. 23 Dec, 2013 3 commits