Re: [Savannah-help-public] missing SSL cert from savannah site

[Sylvain Beucler]

On Tue, Oct 13, 2009 at 08:44:01PM -0400, Richard Stallman wrote:
>     Hello Karl,
> 
>     Thank you for going through all the background on this.
> 
> What does that refer to?  Did Karl send you something he
> did not send to me?  I would like to see it.

Karl had sent the following which you received:


> That would be ideal, but the CAcert web site does not show signs of
> substantial progress.
> 
> CAcert withdrew their request for inclusion in Mozilla in April 2007,
> stating they could not satisfactorily complete the required audit.
> (https://bugzilla.mozilla.org/show_bug.cgi?id=215243#c158) The person
> who was the "Auditor" was one Ian Grigg, who then resigned in June 2009
> without the audit being completed.  I see no information about a
> replacement.
> 
> According to http://wiki.cacert.org/AuditToDo (the place that
> http://wiki.cacert.org/InclusionStatus tells you to look), there are
> many large-scale tasks that have to be addressed before they can
> satisfactorily complete an audit, some of which have been pending for
> years.
> 
> A message from Ian dated yesterday
> https://lists.cacert.org/wws/arc/cacert-board/2009-09/msg00333.html is
> about the structure of the audit organization.  The fact that they are
> still debating at this level, and more importantly the lack of any
> recent information on their status pages, makes me think they are very
> far from inclusion.
> 
> After this research today, my feeling is that we will be waiting for
> some additional amount of time measured in years, and that there is a
> significant probability that they will never succeed.
> 
> If there is more positive news about CAcert inclusion in Mozilla, I
> would be glad to hear it.
> 
> karl
> 
> P.S. Jon: it's not about money.


Incidentally, we completed the documentation work on the login page,
pointing to http://savannah.gnu.org/tls/tutorial/ and
http://savannah.gnu.org/tls/ .

-- 
Sylvain