ssl-cert (1.0.14-0ubuntu2.1) hardy-security; urgency=low

  * SECURITY UPDATE: replace known vulnerable weak keys and certificates
    caused by Debian openssl bug.
  * debian/control: Depends on openssl (0.9.8g-4ubuntu3.1),
    openssl-blacklist.
  * debian/templates: add critical debconf note.
  * debian/postinst: regenerate snakeoil key and certificate on upgrade if
    vulnerable.
  * References
    CVE-2008-0166
    http://www.ubuntu.com/usn/usn-612-4

 -- Mathias Gug <mathiaz@ubuntu.com>  Wed, 14 May 2008 00:01:48 +0200

ssl-cert (1.0.14-0ubuntu2) hardy; urgency=low

  * hostname -f may fail if /etc/hosts isn't configured, so use plain
    'hostname' as a fallback.

 -- Steve Langasek <steve.langasek@ubuntu.com>  Wed, 20 Feb 2008 08:04:25 +0000

ssl-cert (1.0.14-0ubuntu1) hardy; urgency=low

  * make-ssl-cert: Use 'hostname -f' for the snakeoil CN instead of
    'hostname', since relative hostnames are subject to namespace
    collisions that could be exploited (and also because OpenLDAP
    doesn't care for them when connecting to localhost).
  * Modify Maintainer value to match the DebianMaintainerField
    specification.

 -- Steve Langasek <steve.langasek@ubuntu.com>  Sat, 09 Feb 2008 14:21:31 -0800

ssl-cert (1.0.14) unstable; urgency=low

  * Non-maintainer upload to fix pending l10n issues.
  * Debconf templates translations:
    - Portuguese. Closes: #381744
    - Russian. Closes: #388117
    - Japanese. Closes: #391627
    - Spanish. Closes: #402203
    - Galician. Closes: #407954

 -- Christian Perrier <bubulle@debian.org>  Sat,  3 Feb 2007 07:44:14 +0100

ssl-cert (1.0.13) unstable; urgency=low

  * Depend on adduser, since we use addgroup in postinst (closes: #367817)

 -- Adam Conrad <adconrad@0c3.net>  Thu, 18 May 2006 21:59:18 +1000

ssl-cert (1.0.12) unstable; urgency=low

  * Merge updated debconf translations from the bug tracking system:
    - ja.po, thanks to Hideki Yamane <henrich@samba.gr.jp>
    - sv.po, thanks to Daniel Nylander <yeager@lidkoping.net>
    - fr.po, thanks to Nicolas Bertolissio <nico.bertol@free.fr>
    - vi.po, thanks to Clytie Siddall <clytie@riverland.net.au>
    - cs.po, thanks to Miroslav Kure <kurem@upcase.inf.upol.cz>
    - nl.po, thanks to Vincent Zweije <zweije@xs4all.nl>
    - de.po, thanks to Erik Schanze <schanzi_usenet@gmx.de>
  * Closes: #346292, #365346, #313260, #319722, #324563, #330586, #259984

 -- Adam Conrad <adconrad@0c3.net>  Tue,  2 May 2006 07:26:29 +1000

ssl-cert (1.0.11.0ubuntu1) dapper; urgency=low

  * This package is debian-native, adjust version number to reflect this.
  * Create "ssl-cert" group, and make our snakeoil key readable by this
    group, so that daemons that don't start as root (like postgres) can
    still manage to read the private key, if they're also in said group.
  * Undo the above permissions on /etc/ssl/private on package removal.

 -- Adam Conrad <adconrad@ubuntu.com>  Wed, 22 Feb 2006 19:53:46 +1100

ssl-cert (1.0-11ubuntu1) dapper; urgency=low

  * Cleanup the code a lot to be a bit more readable.
  * Add option generate-default-snakeoil.
  * Create default snakeoil in postinst.

 -- Fabio M. Di Nitto <fabbione@ubuntu.com>  Fri, 03 Feb 2006 13:36:53 +0100

ssl-cert (1.0-11) unstable; urgency=low

  * Depend on openssl (Closes: #288050)
  * Update english string to correct grammar (Closes: #253810)
  * Translation updates:
    - German (Closes: #264655)
    - Brazilian (Closes: #267188)
    - Czech (Closes: #287307)

 -- Thom May <thom@debian.org>  Fri,  7 Jan 2005 16:03:23 +0000

ssl-cert (1.0-10) unstable; urgency=high

  * Stop using an unsafe tmpfile. Reported by Marco d'Itri.

 -- Thom May <thom@debian.org>  Fri,  3 Sep 2004 14:52:29 +0100

ssl-cert (1.0-9) unstable; urgency=low

  * Update Japanese translation by Hideki Yamane.
    (Closes: #259984)

 -- Fabio M. Di Nitto <fabbione@fabbione.net>  Sun, 18 Jul 2004 07:56:58 +0200

ssl-cert (1.0-8) unstable; urgency=low

  * Set a title for Debconf questions.
  * Add Japanese translation by Hideki Yamane. (Closes: #244636)
  * Add Turkish translation by Recai Oktas. (Closes: #246071)
  * All questions must be answered.
    (Closes: #229505, #241857, #249365, #251223)

 -- Thom May <thom@debian.org>  Tue, 29 Jun 2004 16:39:02 +0100

ssl-cert (1.0-7) unstable; urgency=low

  * Fixed sed error using "#" instead of a comma as field separator
    (Closes: 225487)

 -- Fabio M. Di Nitto <fabbione@fabbione.net>  Thu, 15 Jan 2004 10:05:22 +0100

ssl-cert (1.0-6) unstable; urgency=low

  * Added support for hash symlink to certificate

 -- Fabio M. Di Nitto <fabbione@fabbione.net>  Sat, 06 Dec 2003 12:19:50 +0100

ssl-cert (1.0-5) unstable; urgency=low

  * Fixed make-ssl-cert to remove temporary files

 -- Fabio M. Di Nitto <fabbione@fabbione.net>  Mon, 20 Oct 2003 10:01:05 +0200

ssl-cert (1.0-4) unstable; urgency=low

  * Added fr translation, thanks to the french team (Closes: #211275)
  * Added pt_BR translation, thanks to the brazillian team (Closes: #210830)

 -- Fabio M. Di Nitto <fabbione@fabbione.net>  Wed, 24 Sep 2003 06:34:24 +0200

ssl-cert (1.0-3) unstable; urgency=low

  * Fixed templates to avoid unnecessary translation fields (Closes: #208924)

 -- Thom May <thom@debian.org>  Mon, 08 Sep 2003 11:37:01 +0100

ssl-cert (1.0-2) unstable; urgency=low

  * Changed Section: to utils, to match openssl
  * Fixed templates to provide a sane defaut for
    non-interactive installation

 -- Thom May <thom@debian.org>  Wed,  3 Sep 2003 12:29:14 +0100

ssl-cert (1.0-1) unstable; urgency=low

  * (Thom May)
    - everything
    - Add lintian overrides for the debconf warnings. We're not using debconf
      as a registry!
  * (Fabio M. Di Nitto)
    - debianization

 -- Thom May <thom@debian.org>  Tue, 02 Sep 2003 12:23:00 +0200
