unofficial mirror of guix-devel@gnu.org 
 help / color / mirror / code / Atom feed
* Re: Should we include nss-certs out of the box?
@ 2024-04-18 10:45 Fabio Natali
  2024-04-19 15:25 ` Maxim Cournoyer
  0 siblings, 1 reply; 15+ messages in thread
From: Fabio Natali @ 2024-04-18 10:45 UTC (permalink / raw)
  To: guix-devel; +Cc: ludo, maxim.cournoyer

Hi,

Here's my attempt at adding 'nss-certs' to '%default-packages'.

https://lists.gnu.org/archive/html/guix-patches/2024-04/msg01187.html

I've removed the 'nss-certs' entry from the installer, as suggested by
Ludo, and I've updated the docs, hopefully all the relevant parts. Can
you think of anything else that may need to be updated?

Thanks, best wishes, Fabio.


-- 
Fabio Natali
https://fabionatali.com


^ permalink raw reply	[flat|nested] 15+ messages in thread
* Should we include nss-certs out of the box?
@ 2024-04-03 18:06 Maxim Cournoyer
  2024-04-03 19:21 ` Ryan Prior
                   ` (5 more replies)
  0 siblings, 6 replies; 15+ messages in thread
From: Maxim Cournoyer @ 2024-04-03 18:06 UTC (permalink / raw)
  To: guix-devel

Hi,

It's been Guix policy to let people choose whether to install or not TLS
root certificates and which one to their machine.  While I applaud the
idea to have the users make a conscious decision about it, in practice I
suppose very few of us choose to *not* install any as that basically
breaks using web browsers, especially ones like IceCat which (by
default) ensures HTTPS is used on every page.

It apparently even makes it impossible to run 'guix pull', if I am to
believe bug#62026.

Should we do as in bug#62026 and have this package be part of the
recommended basic installation?  It'd be in the basic set of an
operating-system packages (via its default %base-packages set).  It
could still be manipulated via the Guix API (filtered out/replaced with
something else).

Is anyone opposed to having nss-certs in %base-packages?

-- 
Thanks,
Maxim


^ permalink raw reply	[flat|nested] 15+ messages in thread

end of thread, other threads:[~2024-04-25 22:43 UTC | newest]

Thread overview: 15+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-04-18 10:45 Should we include nss-certs out of the box? Fabio Natali
2024-04-19 15:25 ` Maxim Cournoyer
2024-04-20 10:06   ` Fabio Natali
2024-04-21 19:29     ` Fabio Natali
2024-04-23  6:11       ` pelzflorian (Florian Pelz)
  -- strict thread matches above, loose matches on Subject: below --
2024-04-03 18:06 Maxim Cournoyer
2024-04-03 19:21 ` Ryan Prior
2024-04-03 20:10 ` Felix Lechner via Development of GNU Guix and the GNU System distribution.
2024-04-05 16:45 ` Jan Wielkiewicz
2024-04-08 18:56 ` Richard Sent
2024-04-10 14:50 ` Ludovic Courtès
2024-04-19  1:58   ` Maxim Cournoyer
2024-04-23 14:18 ` Clément Lassieur
2024-04-25 15:35   ` Maxim Cournoyer
2024-04-25 22:42     ` Clément Lassieur

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).