Tree - rpms/ca-certificates - CentOS Git server

Blob History Raw

		4f058b	`# The upstream Mozilla.org project tests all changes to the root CA`
		4f058b	`# list with the NSS (Network Security Services) library.`
		4f058b	`#`
		4f058b	`# Occassionally, changes might cause compatibility issues with`
		4f058b	`# other cryptographic libraries, such as openssl or gnutls.`
		4f058b	`#`
		4f058b	`# The package maintainers of the CA certificates package might decide`
		4f058b	`# to temporarily keep certain (legacy) root CA certificates trusted,`
		4f058b	`# until incompatibility issues can be resolved.`
		4f058b	`#`
		4f058b	`# Using this configuration file it is possible to opt-out of the`
		4f058b	`# compatibility choices made by the package maintainer.`
		4f058b	`#`
		4f058b	`# legacy=default :`
		4f058b	`# This configuration uses the choices made by the package maintainer.`
		4f058b	`# It may keep root CA certificate as trusted, which the upstream`
		4f058b	`# Mozilla.org project has already marked as no longer trusted.`
		4f058b	`# The set of CA certificates that are being kept enabled may change`
		4f058b	`# between package versions.`
		4f058b	`#`
		4f058b	`# legacy=disable :`
		4f058b	`# Follow all removal decisions made by Mozilla.org`
		4f058b	`#`
		4f058b	`legacy=default`