X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@mail.alpinelinux.org Received: from dal-a2.localdomain (unknown [74.117.189.115]) by mail.alpinelinux.org (Postfix) with ESMTP id AADDEDC00E3 for ; Tue, 26 Nov 2013 12:13:35 +0000 (UTC) Received: from ncopa-desktop.alpinelinux.org (3.203.202.84.customer.cdi.no [84.202.203.3]) (using SSLv3 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: ncopa@tanael.org) by dal-a2.localdomain (Postfix) with ESMTPSA id CFA02BC3A0C; Tue, 26 Nov 2013 12:13:34 +0000 (UTC) Date: Tue, 26 Nov 2013 13:13:31 +0100 From: Natanael Copa To: Eivind Uggedal Cc: alpine-devel@lists.alpinelinux.org Subject: Re: [alpine-devel] [PATCH] main/curl: add ca-certificates as dep Message-ID: <20131126131331.1b6cf200@ncopa-desktop.alpinelinux.org> In-Reply-To: <1385465997-16888-1-git-send-email-eivind@uggedal.com> References: <1385465997-16888-1-git-send-email-eivind@uggedal.com> X-Mailer: Claws Mail 3.9.2 (GTK+ 2.24.20; x86_64-alpine-linux-uclibc) X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit On Tue, 26 Nov 2013 11:39:57 +0000 Eivind Uggedal wrote: > git is for instance not usable against https repos without valid > root certs to check against. Yeah, its needed for https, but curl can work just fine with http/ftp withotu ca-certificates, which is why I let the ca-certificates be 'optional'. It is a question of how much bloat (eg have ca-certificates installed but unused when you only need non-https) you want to pay for the 'just works' factor. On the other hand, if ca-certificates is missing, people might use --insecure to disable certificate checks with https and I don't think we want encourage that. Applied. Thanks! -nc --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org ---