Best Practices

Robert J. Hansen rjh at
Sun Dec 12 21:51:10 CET 2010

On 12/12/2010 3:03 PM, Daniel Kahn Gillmor wrote:
> what do you mean by "V4 certificate checksums"?

Read the RFC.  It's in there, and does a better job than I can do of
explaining it.  Section 5.5.3.

> yeah, this is serious, but it's not embedded in the certificate.  if we
> were to come up with a new fingerprint format, it would not invalidate
> any existing certificates -- it would just change how we refer to them.

I am very skeptical of this claim you seem to be making, that we can
just upgrade-in-place.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5598 bytes
Desc: S/MIME Cryptographic Signature
URL: </pipermail/attachments/20101212/edf8f8c9/attachment-0001.bin>

More information about the Gnupg-users mailing list