Une soirée à Paris ce mercredi, 11 mai 2016

CAcert ParisPassez une merveilleuse soirée au bord de la Seine à Paris, ce mercredi 11 mai 2016 entre 19:00 heures et 20:00 heures

au Bar de l’Hôtel Novôtel Les Halles
8, place Marguerite de Navarre
Paris 1er, Mo Châtelet

Accrédidation, information, cértification;

plus d’informations, voir wiki

Rendez-vous des accréditeurs à Paris, le 14 avril 2016

CAcert ParisNous vous proposons une rencontre le 14 avril 2016 entre 19:00 heures et 20:00 pour toutes personne intéressée par CAcert. Validation (certification) de vos identités pour CAcert.

En moyenne 2 à 5 accréditeur sont présent et peuvent donner entre 10 et 35 points. Si vous pouvez aussi donner des points manifestez vous sur la liste cacert-fr@lists.cacert.org – pour vous inscrire : cacert-fr (voir wiki de CAcert) si vous avez des questions.

Les rendez-vous seront également annoncés sur Twitter

Lieu: Bar de l’Hôtel Novotel Les Halles
8, place Marguerite de Navarre
75001 Paris, France

détails, arrêt de métro, etc. c.f. https://wiki.cacert.org/Events/Paris_2016

Statement of direction given by SGM

Dear members,

there were some mails which were referencing the direction of the new board. This is interesting as the new board so far did not give any statement. Also no new board member either at the SGM nor later did such a statement. Even while it is assumed by many, that I am close to the new board or some of its members, I do not have a clear view what the new board will do.


CC BY NC SA HDZimmermann

However, there WAS a direction given last Saturday. It was given by the statement of direction given by SGMof CAcert Inc with the voice of the SGM. The new board is bound to respect this statement.

The statement of the SGM is:
“The membership is disheartened by the recently elected committee and its persistent disrespect for properly established arbitration, policies and  procedures. It is resolved, that the committee as constituted no longer enjoys the confidence of the members, and each committee member is removed from their position. We stopped short to resolve, that CAcert Inc has been placed into an unacceptable breach of our CAcert Community Agreement, is no longer acting in the interests of the community, and is therefore no longer a suitable vehicle for the community’s property and role as executive.

And instead resolve,
* that CAcert Inc’s actions were the sole responsibility of the committee members.
* that CAcert Inc with a duly formed committee that respects and abides by the rulings of arbitration enjoys our confidence in the future,
* and that the liabilities of CAcert Inc during the period of troubles should remain strictly limited under our DRP as if arbitration was not suspended.

The new committee is to create a detailed and fully transparent, uncensored report of the old committee’s activities since the AGM to which all members of the community may contribute. This report is to be presented to a general meeting for ratification.”

As the one who was selected to do the minutes, I so far can verify the counting of the votes for any part of this statement. I give a CARS that the votes counted by the vote-bot match those of 3 logs of the irc-channel and the proxy-votes were done according to a list created by the former secretary. With the exception of the “we stopped short”-motion, all these parts were given with a clear or even overwhelming majority:

“disheartend sentence”: 28 : 8 : 3
“board removed”: 22 : 14 : 4
“unacceptable breach”: 15 : 16 : 9
“responsibility of old board”: 29 : 11 : 0
“report”: 38 : 0 : 3
[aye : naye : abstain]

41 members-votes were present during those decisions.

Kind regards,
Eva Stöwe, CARS

New board elected


CC BY NC SA HDZimmermann

On April, 9th, 2016, the members of CAcert Inc held an SGM, in which a new board has been elected. The membership felt disheartened by the formerly elected committee and its persistent disrespect for properly established arbitration policies and procedures. This was carried by a motion which shows the importance of being a member of the association.

The full agenda points of the SGM can be found on https://wiki.cacert.org/SGM/20160409?action=recall&rev=13. You may note some placeholders in other topics as later revisions which corrected these items included further agenda items which could not be moved on for the reason of notification of the members in time.

After counting proxies for the votes, the european board members of the prior board resigned. 5 new members were then accepted, including one who got expelled by the old board end of February 2016 because he stood up for an independent arbitration which he wrote in the members mailing list. The old committee was removed and a new committee was elected. The new board members are: Ben Ball (AU), Piers Lauders (AU), Kevin Dawson (AU), Ian Grigg, Gero Treuner, Dirk Astrath, and Mathias Subik. The new committee was also instructed to create a report of the activities of the former board since the AGM. All members of the community may contribute.

On 2016-04-16 at 12:00 UTC (noon) the first meeting of the new commitee will take place in the IRC channel #board-meeting on the CAcert IRC network. Everybody is welcome to participate, please find the agenda on https://wiki.cacert.org/Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2016-04-16.

CAcert at Chemnitzer Linux-Tagen 2016

Logo CLT 2016CAcert wird auch in diesem Jahr auf den Chemnitzer Linux-Tagen (CLT) am 19. und 20. März 2016 mit einem Stand vertreten sein. Dieser befindet sich rechts hinter der Information. Wer sich also über den Fortgang unser Aktivitäten informieren, seine Kenntnisse als Assurer festigen oder selbst enger in das Web of Trust eingebunden werden möchte, ist an unserem Stand herzlich willkommen.

Für weitere Details zum Programm der CLT2016 sei auf die Website verwiesen:

Successful Root-Re-Sign

On March 12th 2016 CAcert performed the Root Re-Signing at our data center in Ede, NL. After the initial attempt[1] had to be postponed on short notice.

The process followed the procedures that are available in the Wiki[2]/SVN[3] along with the tooling[4] used.

The re-signing was conducted by two CAcert critical administrators, a secure-u access engineer, and supervised by CAcert’s internal auditor.
Its execution has been announced on the cacert-systemlog mailing list[5]. The execution report by the critical team has been published there too[6]. The report of the auditor is published in our Wiki[7].

We want to send special thanks to all who helped in preparing and testing the procedures and tools for the process and thus made this smooth execution possible.

CAcert Inc. board tried to have the part for creation of the needed software to be held in public but was overruled by some of the involved teams.

As the re-signed root certificates are available to CAcert the next steps are to publish them to the public. This will need some time as the software team needs to prepare the code changes[8][9][10] and have them reviewed. Once this is done the publishing of the re-signed root certificates will be announced on the blog and all community members will get informed via e-mail.

[1] https://blog.cacert.org/2015/12/re-signing-root-certificate/
[2] https://wiki.cacert.org/Roots/Class1ResignProcedure
[3] https://svn.cacert.org/CAcert/SystemAdministration/signer/re-sign-2016/implementation.txt
[4] https://github.com/CAcertOrg/cacert-procedures/tree/root-resign-sha256/rootResignSHA256
[5] https://lists.cacert.org/wws/arc/cacert-systemlog/2016-03/msg00001.html
[6] https://lists.cacert.org/wws/arc/cacert-systemlog/2016-03/msg00002.html
[7] https://wiki.cacert.org/Audit/Results/session2016.1
[8] https://bugs.cacert.org/view.php?id=1305
[9] https://bugs.cacert.org/view.php?id=1254
[10] https://bugs.cacert.org/view.php?id=1194

CAcert at CeBIT 2016

German version below

On the world’s largest computer fair, the CeBIT in Hannover, DE, CAcert should not be missing out. From March 14th through March 18th Assurers and Assurees are meeting each other at 12:00 CET outside Hall 2 in direction of the green. In case of bad weather the assurances take place directly at the glass front of Hall 2 outside under the roofing.

More details can be found in the Wiki.
CeBIT meeting point

Further events with attendance of CAcert — with a booth at OpenSource events — can be reviewed in the CAcert wiki at http://wiki.cacert.org/Events/UpcomingEvents.

Auf der weltgrößten Computermesse, der CeBIT in Hannover, darf auch CAcert nicht fehlen. Vom 14. bis 18. März treffen sich Assurer und Assurees täglich ab 12 Uhr vor Halle 2 in Richtung der Grünfläche. Bei schlechtem Wetter finden die Assurances direkt an der Glasfront von Halle 2 außen unter der Überdachung statt. Mehr Informationen finden sich im Wiki.

Weitere Veranstaltungen mit CAcert-Beteiligung – mit eigenem Stand auf OpenSource-Veranstaltungen – sind im CAcert-Wiki unter http://wiki.cacert.org/Events/UpcomingEvents einsehbar.

Safer Internet Day 2016

On 2016-02-09 is this year’s Safer Internet Day[1] asking its participants to “Play your part for a better internet!”

The Safer Internet Day was first celebrated in 1999 to strengthen the awareness for security within and on the internet.

CAcert’s share in this effort is providing everybody the means to protect their communication by sending encrypted emails or using free client certificates for authentication.

So take a moment and think about taking part in one of the several events and help to promote email encryption with CAcert S/MIME certificates.

And stay safe on the internet!

[1] https://www.saferinternetday.org/

CAcert at FOSDEM 2016, Jan 30th -31st

FOSDEM, the Free and Open Source Software Developers

CAcert will be present at FOSDEM 2016, the Free and Open Source Software Developers’ European Meeting, on January 30th – 31st.


Re-Signing Root Certificate

On Friday, 29th January 2016, the long-planned re-signing of CAcert’s root certificate will finally take place.

This action has been overdue for quite some time now as several browser and OS vendors have dropped support for MD5-signed certificates or otherwise made such certificates unusable.

The re-signing process [1] has been tested successfully at last FrOSCon in August 2015 [2].

Attendance of the re-signing ceremony will be open to the public and will take place near CAcert’s data center in Ede, NL. As soon as more details become available we’ll provide a wiki page with the exact schedule and location.

UPDATE: Unfortunately the Re-Signing event had to be postponed due to shortage of manpower in the different teams involved in the process. The currently a new date is being searched. As soon as the new date is available it will be announced here.

[1] https://wiki.cacert.org/Roots/Class1ResignProcedure
[2] https://wiki.cacert.org/Audit/Results/session2015.4