I’m just wondering if anybody would know the severity of this? I’m not an expert at this stuff, but it doesn’t seem like it’s worrisome as an expired SSL cert or anything, but it still doesn’t seem like it should be something that is expired seeing that it handles encryption. This expired certificate has been here ever since the first time I used Endeavour almost 2 years ago, so it’s on every install and it’s bound to be on your guys system’s as well. I just wanted to bring it up and see if anybody has any information on the situation!
Thanks
Edit:
I also wanted to add that this doesn’t come up in other Linux installs such as Fedora, Debian or even vanilla Arch so it’s something to do specifically with EndeavourOS.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
af:73:c8:b4:cf:9f:80:8f
Signature Algorithm: sha1WithRSAEncryption
Issuer: C = NO, ST = Oslo, O = sks-keyservers.net CA, CN = sks-keyservers.net CA
Validity
Not Before: Oct 9 00:33:37 2012 GMT
Not After : Oct 7 00:33:37 2022 GMT
I’m thinking this as well. The website https://sks-keyservers.net isn’t even up anymore. So does that mean that the certificates are on an EOS install but they’re not doing anything? Like I said, I really don’t know much about this stuff haha.
EndeavourOS does not add these they came directly from gnupg sources, i checked also the arch package PKGBUILD and they do not add this there could be a leftover or for compatibility reasons. the path is generic shared stuff for gnupg… so it will be there for a reason.
Also saw that gnupg package is marked outdated for longer already… copuld be this will get removed with nthe next update already…
Better would be to find out why it is even there… place to ask ?
