--nextPart6828079.Wka8zDB4ji
Content-Type: Text/Plain;
  charset="iso-8859-15"
Content-Transfer-Encoding: quoted-printable

Em Sexta-feira 29 Janeiro 2010, =E0s 14:04:06, Pierre Schmitz escreveu:
> > I've already made a script to do that. Actually, a Qt program.
> >
> > I'll probably update Qt's certificate list with the Firefox ones for the
> > next  Qt version.
> >
> > So all KDE has to do is stop overriding Qt's default certificate bundle.
>=20
> I would appreciate if KDE and Qt would use the system wide cert bundle=20
> (optionally configurable at build time).

The only thing that's holding me back in updating the Qt certificates is to=
=20
decide whether keeping expired certificates is a good thing.

There are 81 certificates in Qt's bundle. One of them is repeated, so 80 ar=
e=20
unique.

However, from those 80, 8 have expired already.

Of the 72 non-expired, unique certificates in Qt, 48 are *not* in the Firef=
ox=20
certificate store. But when the remainder of the Firefox ones are added, th=
e=20
total increases to 120.

=2D-=20
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
  Senior Product Manager - Nokia, Qt Development Frameworks
      PGP/GPG: 0x6EF45358; fingerprint:
      E067 918B B660 DBD1 105C  966C 33F5 F005 6EF4 5358

--nextPart6828079.Wka8zDB4ji
Content-Type: application/pgp-signature; name=signature.asc 
Content-Description: This is a digitally signed message part.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iD8DBQBLYuL9M/XwBW70U1gRAgsLAJ9yanig+7l4j9xUaF0Dgg/QR6dPvwCdGqrV
Uq496Gz/SkRfdvl0eWJ/RSM=
=Dmdy
-----END PGP SIGNATURE-----

--nextPart6828079.Wka8zDB4ji--