The "default-jre-headless" might be a good approach to look at to avoid to have to maintain Debian/Ubuntu ca-certificates-java package for situation like this or others possible scenarios.
IMHO, I think it's better to stick with the actual fix for now and maybe submitting a bug to Debian (if no already existing) to consider the approach mentioned by jibel in comment #14.
The "default- jre-headless" might be a good approach to look at to avoid to have to maintain Debian/Ubuntu ca-certificates -java package for situation like this or others possible scenarios.
IMHO, I think it's better to stick with the actual fix for now and maybe submitting a bug to Debian (if no already existing) to consider the approach mentioned by jibel in comment #14.
Thoughts ?
- Eric