"Ludovic FLAMENT" <[EMAIL PROTECTED]> writes:
> Just verify the signature of request with : openssl -req -verify -in
> requestfile
>
> When a user make a request, he sign them with private key, so if anyone
> change the contents of the request, the signature verification failed.
Hmm, has the key signing the CSR been certified yet? I don't think
so, so the signature is meaningless.
--
Florian Weimer [EMAIL PROTECTED]
University of Stuttgart http://cert.uni-stuttgart.de/
RUS-CERT +49-711-685-5973/fax +49-711-685-5898
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
