Please tell me I’m dreaming. While working on the new version of CTLInfo (screenshot below), I ran across an unexpected and rather scary finding: A key security component of Windows, the so-called ‘Disallowed’ CTL, has a validity of 15 months and is going to expire in 25 hours.
certutil -verifyCTL disallowed indeed confirms it on my Windows 10 machine, but like the author, I have no idea what this means. If it really is what it looks like… Wow.
.. when it expires it’ll get a new one. No?