On Feb 18, 2009, at 10:43 AM, Landon Fuller wrote:
... and signatures could still be verified.
Spoke a little too soon. Signatures are written out with the x509 subjectkeyidentifier from the public key.
A mismatched pair would need to have matching subjects for validation, and that assumes that recipient info continues to be encoded in the same way. If the issuer and serial number were used instead, this would fail.
-landonf
PGP.sig
Description: This is a digitally signed message part
------------------------------------------------------------------------------ Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H
_______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
