On Tue, 22 Nov 2016 at 17:48:44 +0000, Iain R. Learmonth wrote: > The root certificate has constraints > that it can only be used to sign domains ending with .dn42
Does this package insert the dn42 CA into the system-wide default CA
store?
(If it does, then I think it would be necessary to tread *very*
carefully.)
Do all TLS libraries available in Debian respect those constraints?
S
