bed248a516
* Update Mozilla certificate authority bundle to version 2.40. * Add distrusted Symantec CA list to blacklist for explicit removal. * Blacklist expired root certificate, "AddTrust External Root". The following certificate authorities were added (+): + "Certigna Root CA" + "emSign ECC Root CA - C3" + "emSign ECC Root CA - G3" + "emSign Root CA - C1" + "emSign Root CA - G1" + "Entrust Root Certification Authority - G4" + "GTS Root R1" + "GTS Root R2" + "GTS Root R3" + "GTS Root R4" + "Hongkong Post Root CA 3" + "UCA Extended Validation Root" + "UCA Global G2 Root" The following certificate authorities were removed (-): - "AddTrust External Root" - "Certinomis - Root CA" - "Certplus Class 2 Primary CA" - "Deutsche Telekom Root CA 2" - "GeoTrust Global CA" - "GeoTrust Primary Certification Authority" - "GeoTrust Primary Certification Authority - G2" - "GeoTrust Primary Certification Authority - G3" - "GeoTrust Universal CA" - "thawte Primary Root CA" - "thawte Primary Root CA - G2" - "thawte Primary Root CA - G3" - "VeriSign Class 3 Public Primary Certification Authority - G4" - "VeriSign Class 3 Public Primary Certification Authority - G5" - "VeriSign Universal Root Certification Authority" Changes for pkgsrc packaging: * Add README.pkgsrc, replacing MESSAGE. * Improve DESCR to better describe the functionality of the package. * Install changelog and README.source from the distribution package.
7 lines
355 B
Text
7 lines
355 B
Text
This package provides the certificates distributed by the Mozilla
|
|
Project and will, by default, install certificates trusted by the
|
|
Mozilla Project in the system certificate store.
|
|
|
|
The sysadmin can configure the list of trusted certificates and also
|
|
add local certificates as needed by editing ca-certificates.conf and
|
|
re-running update-ca-certificates.
|