[Fedora-legal-list] CAcert.org license

Ciaran Farrell cfarrell at suse.de
Wed Dec 10 09:20:56 UTC 2008 

On Tuesday 09 December 2008 23:17:07 Tom "spot" Callaway wrote:
> On Tue, 2008-12-09 at 23:03 +0100, Matthias Saou wrote:
> > > >>>>> "TC" == Tom \"spot\" Callaway <Tom> writes:
> > >
> > > TC> Given that it does not give permission for us to redistribute (the
> > > TC> cornerstone requirement for Content licenses), this license is not
> > > TC> acceptable for Fedora.
> > >
> > > I guess I'm glad I looked before approving the package, but I have to
> > > wonder: Do the cacert folks actually want anyone to use their
> > > certificates?  I mean, this prevents basically everyone from using
> > > them, because they can't come with the OS or the browser.
> >
> > Personally, the more I read the document, the more I'm confused.
> >
> > "You may NOT distribute certificates or root keys under this
> > licence"... does this mean we can distribute under a different license?
>
> Well, sortof. The wording here is strange because you can get a
> different license from the CA issuer. We can't just pick a license, but
> the CA issuer might be willing to give us a different one.
>
> > Would it be worth getting in contact with CAcert.org in order to try
> > and have them allow us to redistribute the root certs under conditions
> > which are acceptable to the Fedora Project?
>
> Probably, yes. :)

Just thought I'd chime in on this CACert issue. We at openSUSE have the same 
problem with the CACert license and we are in contact with them about it. They 
don't seem to be sure about what to do and are open for suggestions, 
especially from distributors. They want to get their root certs into our 
distributions, but worry about possible implications of their private key 
being compromised.

I think it would make sense to coordinate our efforts here - openSUSE and 
Fedora want to distribute the CaCert.org root certs and we are both unhappy 
with the current terms of distribution.

@spot - if you like, I'll forward you our correspondence with the cacert 
people thus far.

Ciaran

-- 
Ciaran Farrell                   __o   
cfarrell at suse.de               _`\<,_ 
Phone: +49 (0)911 74053 262   (_)/ (_)
SUSE Linux Products GmbH,
GF: Markus Rex, HRB 16746 (AG Nürnberg)
Maxfeldstrasse 5, 90409, Nuremberg, Germany

/ˈkiː.ræn/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-legal-list/attachments/20081210/6e6cfa2a/attachment.sig>

More information about the Fedora-legal-list mailing list