Hi, On Fri, Jan 02, 2009 at 06:27:14PM +0100, Alexander Klink wrote: > I'll probably add randomization to notbefore/notafter later on (if one > subtracts a (small, in the order of 1 day maybe) number from > the notbefore date and adds a small number to the notafter date, that > should be feasible and not disturb anyone) ...
I've been convinced off-list that this is not necessary if we already have randomized serial numbers. This also has the complication that we no longer know when a certificate was issued, as we don't have a database field for this information. So I will not implement it for now, if someone has a good reason for it, I'll reconsider it. Cheers, Alex -- Dipl.-Math. Alexander Klink | IT-Security Engineer | [email protected] mobile: +49 (0)178 2121703 | Cynops GmbH | http://www.cynops.de ----------------------------+----------------------+--------------------- HRB 7833, Amtsgericht | USt-Id: DE 213094986 | Geschäftsführer: Bad Homburg v. d. Höhe | | Martin Bartosch
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------
_______________________________________________ OpenXPKI-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-devel
