On Tue, 2026-06-09 at 09:57 -0400, Todd Zullinger wrote: > https://fedoraproject.org/wiki/Changes/droppingOfCertPemFile > > Generally, you should be able to drop such hard-coded paths > and apps will use the OpenSSL default for these paths. > > It appears the sendmail package didn't update its default > config, so a bug to remove and/or adjust that would be in > order too.
Looked at that link, my two pence worth... In the past I've set up internal web-servers and mail-servers, amongst other things, and found managing certificates to be a right pain. The locations and paths they expected to find things, and the cert creating documentation describing how to create them, and on-line help, disagreed with each other. And the convoluted, yet slightly different, filepaths and filenames don't make for an easy job. Trying to follow upstream ideas about this can mean a plethora of different locations, each application having their own ideas about where things should go. A distro's own rules can say all certs go within a certain starting location, with a coherent structure to it. -- uname -rsvp Linux 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64 (yes, this is the output from uname for this PC when I posted) Boilerplate: All unexpected mail to my mailbox is automatically deleted. I will only get to see the messages that are posted to the mailing list. -- _______________________________________________ users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
