Fedora 21 Moderate Update: CA-Certificates Configuration Changes

* Tue May 5 2015 Kai Engert - 2015.2.4-1.0 - Update to CKBI 2.4 from NSS 3.18.1 with legacy modifications. - Fixed a typo in the ca-legacy manual page. * Tue Mar 31 2015 Kai Engert - 2015.2.3-1.1 - Don't use "enable" as a value for the legacy configuration, instead of the value "default", to make it clear that this preference isn't a promise to keep certificates enabled, but rather that we only keep them enabled as long as it's considered necessary. - Changed the configuration file, the ca-legacy utility and filenames to use the term "default" (instead of the term "enable"). - Added a manual page for the ca-legacy utility. - Fixed the ca-legacy utility to handle absence of the configuration setting and treat absence as the default setting. * Tue Mar 24 2015 Kai Engert - 2015.2.3-1.0 - Update to CKBI 2.3 from NSS 3.18 with legacy modifications - Fixed a mistake in the legacy handling of the upstream 2.2 release: Removed two AOL certificates from the legacy group, because upstream didn't remove them as part of phasing out 1024-bit certificates, which means it isn't necessary to keep them. - Fixed a mistake in the legacy handling of the upstream 2.1 release: Moved two NetLock certificates into the legacy group. * Tue Dec 16 2014 Kai Engert - 2014.2.2-1.0 - Update to CKBI 2.2 from NSS 3.17.3 with legacy modifications - Update project URL - Cleanup