On Mon, Mar 4, 2013 at 9:33 PM, Steven Funasaki <[email protected]> wrote:
> Does the CSR need to be signed with the matching private key for the CA to > validate it? Of course. That demonstrates proof of possession of the private key. Otherwise there is no binding of an entity to a keypair, and no cert can have any validity whatsoever. What precisely do you think a certificate is? - M ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
