Hello, > I have read the advisory an I am a bit puzzled regarding the there are > CAs using exponent 3 in wide use comment, I have tried to check and > could not found any CA using this exponent, all the CA’s I have seen > are using 0x10001 (CA’s I have generate by OpenSSL using default > values, world wide trusted CA’s such as VeriSign and Thawte etc..), I > understand that specifying CA’s using exponent 3 will give specific > targets to malicious people and that is defiantly not a good idea, how > ever I would like to try and better understand the range of the > problem, are only old CA’s using exponent 3 ? > > > > Could anyone elaborate some on this? Look at: http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html
Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
