|
|
| Reporter | alkas | Assigned To | | |
|---|
| Priority | high | Severity | major | Reproducibility | always |
|---|
| Status | new | Resolution | open | |
|---|
| Platform | Default | OS | any | OS Version | any |
|---|
| Product Version | 2017 Q4 | |
|---|
|
|
| Summary | 0001579: CAcert roots access on the WoT is difficult and should be available also on the Wiki |
|---|
| Description | Novice users need to download & install CAcert roots. It must be done using HTTP (http://www.cacert.org/index.php?id=3). But the HTTP protocol is considered as unsafe nowadays. Moreover, some leading browsers offer the function "HTTPS-only".
The websites Blog & Wiki are planned to be equipped with LetsEncrypt to make their visits easier. Both CAcert roots are already prepared as simple certs and bundles, for systems Windows/Unix/Linux/Android/Mac, on the wiki page https://wiki.cacert.org/FAQ/NewRoots.
My suggestion is to publish this Wiki link on the Blog or the Wiki itself, thus on the websites equipped with LetsEncrypt. |
|---|
| Steps To Reproduce | On the system/browser with CAcert roots uninstalled, go to https://www.cacert.org - you immediately will see the serious warning with the advice not to continue. That trouble waits to every novice who needs to download CAcert roots. |
|---|
| Tags | blog, CAcert roots, Wiki, WoT |
|---|
|
|
| Reviewed by | |
|---|
| Test Instructions | see repro steps above |
|---|
|
|
