Linux Certificate Authority root stores have a too simple view of 'trust'

For information

This has already been taken into account in CU172 Testing. See the announcement.

The patch to implement this takes account of the expiry date question raised in the article.

So with CU172 onwards IPFire users will not be using the TrustCor Systems root CA’s