Architecture question: Do certificate serial numbers within a multi-trier certificate authority chain need be globally unique?
A Thunderbird user recently received the following error because his cert serial number, as signed by one CA, matched the serial number of the server, both of which were signed by CA signing certs signed by a master CA "Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number" Thanks, ~BAS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
