> Issuer and subject number should also be unique, and it's a common > search pattern. I don't think anyone searches on the hash of the > entire certificate.
Not true. I've searched on the hash of the certificate when we are producing certificates that must maintain privacy and therefore have garbage in the Issuer and Subject fields. Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!! The Kermit Project @ Columbia University includes Telnet, FTP and HTTP http://www.kermit-project.org/ secured with Kerberos, SRP, and [EMAIL PROTECTED] OpenSSL. Interfaces with OpenSSH ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
