Tree - rpms/ca-certificates - CentOS Git server

Blob History Raw

		b01320	`# The upstream Mozilla.org project tests all changes to the root CA`
		b01320	`# list with the NSS (Network Security Services) library.`
		b01320	`#`
		b01320	`# Occassionally, changes might cause compatibility issues with`
		b01320	`# other cryptographic libraries, such as openssl or gnutls.`
		b01320	`#`
		b01320	`# The package maintainers of the CA certificates package might decide`
		b01320	`# to temporarily keep certain (legacy) root CA certificates trusted,`
		b01320	`# until incompatibility issues can be resolved.`
		b01320	`#`
		b01320	`# Using this configuration file it is possible to opt-out of the`
		b01320	`# compatibility choices made by the package maintainer.`
		b01320	`#`
		b01320	`# legacy=default :`
		b01320	`# This configuration uses the choices made by the package maintainer.`
		b01320	`# It may keep root CA certificate as trusted, which the upstream`
		b01320	`# Mozilla.org project has already marked as no longer trusted.`
		b01320	`# The set of CA certificates that are being kept enabled may change`
		b01320	`# between package versions.`
		b01320	`#`
		b01320	`# legacy=disable :`
		b01320	`# Follow all removal decisions made by Mozilla.org`
		b01320	`#`
		b01320	`legacy=default`