ssl certificates

[Elan Ruusamäe]

hi

various packages provide default self-signed certificates, some should, but 
don't (cups, courier-imap), and some provide expired certs (apache1, perhaps 
apache2).

so here's the idea:
let's generate the self signed certificate at build time. if we mark it 
as %config(noreplace), people using the self generated cert won't get cert 
update on upgrade and everybody will feel good.

ps: what's with the /etc/pki status? was something decided?

-- 
glen