lp:ubuntu/karmic/ssl-cert

Created by James Westby on 2009-07-03 and last modified on 2009-07-07
Get this branch:
bzr branch lp:ubuntu/karmic/ssl-cert
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

11. By Colin Watson on 2009-07-07

releasing version 1.0.23ubuntu2

10. By Colin Watson on 2009-07-07

Fixed comment typo in make-ssl-cert (LP: #352157).

9. By Steve Langasek on 2009-01-16

* Drop the dependency on openssl-blacklist; by this point (roughly 12
  months from the original security vulnerability to the jaunty
  release) all users should have upgraded to a version that will clear
  their vulnerable keys out, and we need the space back on the CDs
  now.
* Change the debconf template to an error, telling the user what
  commands to run to check for the problem and advising them that they
  should have installed the security update before now.

8. By Stefan Fritsch on 2008-09-24

Update Dutch translation, thanks to Paul Gevers. Closes: #499978

7. By Mathias Gug on 2008-06-05

* Merge from debian unstable, remaining changes:
  - replace known vulnerable weak keys and certificates caused by
    Debian openssl bug (CVE-2008-0166).
    - debian/control: Depends on openssl (0.9.8g-4ubuntu3.1),
      openssl-blacklist.
    - debian/templates: add critical debconf note.
    - debian/postinst: regenerate snakeoil key and certificate on upgrade if
      vulnerable.
  - debian/control:
    - Update Maintainer field and VCS-* fields.

6. By Mathias Gug on 2008-05-14

* SECURITY UPDATE: replace known vulnerable weak keys and certificates
  caused by Debian openssl bug.
* debian/control: Depends on openssl (0.9.8g-4ubuntu3.1),
  openssl-blacklist.
* debian/templates: add critical debconf note.
* debian/postinst: regenerate snakeoil key and certificate on upgrade if
  vulnerable.
* References
  CVE-2008-0166
  http://www.ubuntu.com/usn/usn-612-4

5. By Steve Langasek on 2008-02-20

hostname -f may fail if /etc/hosts isn't configured, so use plain
'hostname' as a fallback.

4. By Steve Langasek on 2008-02-09

* make-ssl-cert: Use 'hostname -f' for the snakeoil CN instead of
  'hostname', since relative hostnames are subject to namespace
  collisions that could be exploited (and also because OpenLDAP
  doesn't care for them when connecting to localhost).
* Modify Maintainer value to match the DebianMaintainerField
  specification.

3. By Christian Perrier on 2007-02-03

* Non-maintainer upload to fix pending l10n issues.
* Debconf templates translations:
  - Portuguese. Closes: #381744
  - Russian. Closes: #388117
  - Japanese. Closes: #391627
  - Spanish. Closes: #402203
  - Galician. Closes: #407954

2. By Thom May on 2005-01-07

* Depend on openssl (Closes: #288050)
* Update english string to correct grammar (Closes: #253810)
* Translation updates:
  - German (Closes: #264655)
  - Brazilian (Closes: #267188)
  - Czech (Closes: #287307)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/lucid/ssl-cert
This branch contains Public information 
Everyone can see this information.

Subscribers