Pollinate ships entropy.ubuntu.com's public certificate for tighter security.
This certificate has been updated and pollinate needs to be updated.
[Impact]
Any new 14.04 (Trusty) cloud instance with a down-level version of pollinate will fail to seed their PRNG from entropy.ubuntu.com.
[Test Case]
Run:
$ sudo pollinate -r
to reseed your PRNG. If you have the old version of pollinate, you'll get certificate errors (See Comment #1), and it will exit non-zero. If you have the new version (already uploaded to ppa:pollinate/ppa, utopic, trusty-proposed), it will work again and exit zero (see Comment #2).
[Regression Potential]
Negligible. A single file is updated with a new public SSL certificate for https://entropy.ubuntu.com, in /etc/pollinate/entropy.ubuntu.com.pem
Pollinate ships entropy. ubuntu. com's public certificate for tighter security.
This certificate has been updated and pollinate needs to be updated.
[Impact]
Any new 14.04 (Trusty) cloud instance with a down-level version of pollinate will fail to seed their PRNG from entropy.ubuntu.com.
[Test Case]
Run:
$ sudo pollinate -r
to reseed your PRNG. If you have the old version of pollinate, you'll get certificate errors (See Comment #1), and it will exit non-zero. If you have the new version (already uploaded to ppa:pollinate/ppa, utopic, trusty-proposed), it will work again and exit zero (see Comment #2).
[Regression Potential] /entropy. ubuntu. com, in /etc/pollinate/ entropy. ubuntu. com.pem
Negligible. A single file is updated with a new public SSL certificate for https:/