On Fri, Feb 12, 2021 at 10:15:36AM +0100, Martin Habovštiak wrote:
> # TODO: support other archs
> replace_libnssckbi /usr/lib/x86_64-linux-gnu/nss/libnssckbi.so
> replace_libnssckbi /usr/lib/firefox-esr/libnssckbi.so
> replace_libnssckbi /usr/lib/thunderbird/libnssckbi.so
As of Debian 12
Hi, as someone who got bitten by this and spent like half day figuring it
out I fully support this.
I found out that diverting/replacing that file is not enough as Firefox and
Thunderbird are shipped with their own versions (not sure if applies to
Bullseye too, I only checked Buster).
I wrote
Hi,
Bullseye will be frozen soon. Let's manage to get this sorted out ️.
I think the maintainable solution to this is to
replace (dpkg-divert)
libnssckbi.so (/usr/lib//nss/libnssckbi.so)
with
/usr/lib//pkcs11/p11-kit-trust.so
if a package
p11-kit-trust
is installed.
The package
Hi Wolfgang.
On Do 04 Apr 2019 17:18:38 CEST, Wolfgang Schweer wrote:
On Thu, Apr 04, 2019 at 01:03:50PM +, Mike Gabriel wrote:
Feel free to keep this bug open for bullseye, so we can re-discuss this
approach or close it.
Yes, let's consider this for bullseye.
Yep.
Just for the
On Thu, Apr 04, 2019 at 01:03:50PM +, Mike Gabriel wrote:
> Feel free to keep this bug open for bullseye, so we can re-discuss this
> approach or close it.
Yes, let's consider this for bullseye.
Just for the record:
[ pkcs11.txt ]
On a 64-bit PC Buster system this is working ok:
>
HI Wolfgang,
On Do 04 Apr 2019 14:19:31 CEST, Wolfgang Schweer wrote:
Moin Mike,
On Thu, Apr 04, 2019 at 10:31:54AM +, Mike Gabriel wrote:
to debian-edu-config's file
etc/skel/.mozilla/firefox/debian-edu.default/pkcs11.txt
While this was valid for Stretch, in Buster /etc/skel isn't
Moin Mike,
On Thu, Apr 04, 2019 at 10:31:54AM +, Mike Gabriel wrote:
> to debian-edu-config's file
> etc/skel/.mozilla/firefox/debian-edu.default/pkcs11.txt
While this was valid for Stretch, in Buster /etc/skel isn't used
anymore. Certificate related configuration is done in gosa-create.
Package: debian-edu-config
Severity: wishlist
Hi,
today I have played with Firefox and custom CA certificate import into
the browser. This over-all sucks. Firefox does not consider the
system-wide CA cert store as trustworthy by default.
However, there is a simple solution to this: the
8 matches
Mail list logo
