audit and possibly improve how Jiff loads resources from the `TZ` environment variable

[BurntSushi]

Specifically, look for ideas from FreeBSD and this tz mailing list post. I'm in particular interested in understanding and improving this from a security perspective.

I also wonder whether this should be extended to reading zoneinfo directories as well.