Mercurial > hg
annotate contrib/debian/cacerts.rc @ 29292:bc5f55493397
sslutil: make cert fingerprints messages more actionable
The previous warning and abort messages were difficult to understand.
This patch makes them slightly better.
I think there is still room to tweak the messaging. And as we adopt
new security defaults, these messages will certainly change again.
But at least this takes us a step in the right direction.
References to "section" have been removed because if no fingerprint
is defined, "section" can never be "hostfingerprints." So just print
"hostsecurity" every time.
| author | Gregory Szorc <gregory.szorc@gmail.com> |
|---|---|
| date | Tue, 31 May 2016 19:21:08 -0700 |
| parents | ccdc2b23fdb8 |
| children |
| rev | line source |
|---|---|
|
26297
ccdc2b23fdb8
debian: configuration so that cacerts is properly loaded
Augie Fackler <augie@google.com>
parents:
diff
changeset
|
1 # This config file points Mercurial at the system-wide certificate |
|
ccdc2b23fdb8
debian: configuration so that cacerts is properly loaded
Augie Fackler <augie@google.com>
parents:
diff
changeset
|
2 # store from the ca-certificates package. |
|
ccdc2b23fdb8
debian: configuration so that cacerts is properly loaded
Augie Fackler <augie@google.com>
parents:
diff
changeset
|
3 |
|
ccdc2b23fdb8
debian: configuration so that cacerts is properly loaded
Augie Fackler <augie@google.com>
parents:
diff
changeset
|
4 [web] |
|
ccdc2b23fdb8
debian: configuration so that cacerts is properly loaded
Augie Fackler <augie@google.com>
parents:
diff
changeset
|
5 cacerts = /etc/ssl/certs/ca-certificates.crt |