If they could just decide where TLS certificates live...
this post was submitted on 31 Aug 2025
29 points (96.8% liked)
Linux
10191 readers
693 users here now
A community for everything relating to the GNU/Linux operating system (except the memes!)
Also, check out:
Original icon base courtesy of lewing@isc.tamu.edu and The GIMP
founded 2 years ago
MODERATORS
Most distros have /etc/ssl/certs/ca-certificates.crt, sometimes it is a symlink but that location is there in ubuntu, alpine, fedora and arch.
edit: Also you can usually change this location with an env variable.
If only it were so simple. https://serverfault.com/a/722646
That's the real location of the certs, but once again they usually make a symlink in /etc/ssl/certs/ca-certificates.crt
One library that is problematic is p11-kit, this one usually comes with a different path to the certs hardcoded and does not respect env variables unless it is compiled with a specific flag which no distro uses.
So I had to do this hack to fix that library.
And unsurprisingly, a majority of the comments on that post are complaining about systemd.
man 7 hier is much older than linux itself. The 1994 start date in the article is not doing the history of the tradition justice.
It would have been weirder if the creepy "init system" (with its 58 executables and counting, 52 + 6 arg0 links) dictating the future of that tradition didn't raise some eye brows.
dictating the future
so raise your concerns lmao (just "i don't like it!!" doesn't count btw)
low effort link post.