On Fri, Aug 22, 2008 at 09:04:31PM +0200, Kai Engert wrote:
Parts of the Fedora infrastructure do not use certificates issued by a CA already trusted by Firefox, but from Fedora's own certificate authority.
If you decide to trust Fedora to issue certificates that can identify web sites, you could decide to import that CA cert to your set of trusted roots.
Could perhaps Fedora/RHEL drop these certificates under /etc/pki/tls/certs/ to automatically trust them?
If one trusts the Fedora/RHEL keys and packages like firefox for serving the https connections, then there is not much more further trust needed to blindly add these.