HEX
Server: Apache/2.4.41 (Amazon) OpenSSL/1.0.2k-fips PHP/5.6.40
System: Linux ip-172-31-40-18 4.14.146-93.123.amzn1.x86_64 #1 SMP Tue Sep 24 00:45:23 UTC 2019 x86_64
User: apache (48)
PHP: 5.6.40
Disabled: NONE
$ pwd: /etc/pki/ca-trust/
Upload Files
File: //etc/pki/ca-trust/ca-legacy.conf
# The upstream Mozilla.org project tests all changes to the root CA
# list with the NSS (Network Security Services) library.
#
# Occassionally, changes might cause compatibility issues with
# other cryptographic libraries, such as openssl or gnutls.
#
# The package maintainers of the CA certificates package might decide
# to temporarily keep certain (legacy) root CA certificates trusted,
# until incompatibility issues can be resolved.
# 
# Using this configuration file it is possible to opt-out of the
# compatibility choices made by the package maintainer.
#
# legacy=default :
#   This configuration uses the choices made by the package maintainer.
#   It may keep root CA certificate as trusted, which the upstream 
#   Mozilla.org project has already marked as no longer trusted.
#   The set of CA certificates that are being kept enabled may change
#   between package versions.
#
# legacy=disable :
#   Follow all removal decisions made by Mozilla.org
#
legacy=default
@ Telegram