-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote:
> but I remember I saw, when the cetificate generation bug in OpenSSL for > debian machines was discovered, a site said "certificates generated by > GnuPG are not affected". You may be under the impression that a Key & a Certificate are 2 different animals. By definition, a PGP/GPG Key _is_ a Certificate. An x.509 Certificate is just an asymmetric Keypair issued/assigned by an Organization whereas a PGP/GPG Key is basically a self-generated Certificate. The 'generation bug' had to do with the software used by x.509 Organizations to created the 'Keypair' they assigned to their clients. GnuPG uses a different random number generation process so was not affected. JOHN ;) Timestamp: Friday 29 Aug 2008, 07:01 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10-svn4818: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIt9cwAAoJEBCGy9eAtCsPTlAH/RL9LO7OOhsJz12NZjDRf3dU lPTmJk81LdLnl8c32ht6KltrQtXhsv4z5mOiSdcxj5qVEOpG1kSbfxzmQjh10Dvk 6PpyEsiGMG8c9nOMYlrstVpV95rdnFNCqbK7FBOlLeeFdFU0C2EJGsqzqqs94tOG ARTNJ6MvUky7DvmEih1D12N0NW+kO145HHOO5JiAgbpGiJ/VD9FrO6SFKihw6AtM S8TxvbAKa3xYZjoud3cCTJts0mYirx3I21TCuj4kh6zBg/3SPZsbcWr58fpzeFTu 5C2rEJrKEJ1nAIDR1ra1VlcJ9hN9Y5bAjtGLudlwEg2SEX+uPw6A/vxJNh6/an0= =r/fK -----END PGP SIGNATURE----- _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
