Update Java store

Other than before teh Java store was extracted directly from a keystore from a Java JRE from https://jdk.java.net/. The Debian keystore used previously used the certificates from the Debian machine itself (installation script in ``/etc/ca-certificates/update.d/``. Check with ``keytool -list -rfc -keystore /etc/ssl/certs/java/cacerts | grep -i 'alias'`` As a consequence this store contains less certificates: etc/Java.pem:90 etc/Linux.pem:128 and needs some testing whether it really should be still included.
2024-12-29 04:49:44 +01:00 · 2020-01-10 09:17:57 +01:00 · 2020-01-10 09:17:57 +01:00 · 40155ed222
commit 40155ed222
parent 7341cac3c2
2 changed files with 1813 additions and 2881 deletions
--- a/etc/Java.pem
+++ b/etc/Java.pem
--- a/etc/README.md
+++ b/etc/README.md
@ -5,7 +5,7 @@ The certificate trust stores were retrieved from

 * **Linux:** Copied from an up-to-date Debian Linux machine
 * **Mozilla:** https://curl.haxx.se/docs/caextract.html
-* **Java:** JRE keystore pulled + extracted with keytool from a Linux machine from  $JAVA_HOME/jre/lib/security/cacerts
+* **Java:** extracted (``keytool -list -rfc -keystore <file> | grep -E -v '^$|^\*\*\*\*\*|^Entry |^Creation |^Alias '``) from a JRE 8 from https://jdk.java.net/ (previously JRE keystore extracted from $JAVA_HOME/jre/lib/security/cacerts using Linux)
 * **Microsoft:** Following command pulls all certificates from Windows Update services: ``CertUtil -syncWithWU -f -f . `` (see also http://aka.ms/RootCertDownload, https://technet.microsoft.com/en-us/library/dn265983(v=ws.11).aspx#BKMK_CertUtilOptions).
 * **Apple:**
    1. __System:__ from Apple OS X keychain app.  Open Keychain Access utility, i.e.