On Mon, Jun 18, 2012, Nou Dadoun wrote: > Sorry accidentally hit send, the oddity is (as I mentioned before) that > comparable certificates with larger keys using the same signing algorithm > pass verification. E.g. this one is passing: >
Can you reproduce this using the "verify" utility and the -verbose option? If so please post the certificates, privately to me if you wish. Note that the signature on the root CA is not checked by default so it can use any signature algorithm. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
