On Mon, Mar 4, 2013 at 9:33 PM, Steven Funasaki <thegreatste...@gmail.com> wrote:
> Does the CSR need to be signed with the matching private key for the CA to > validate it? Of course. That demonstrates proof of possession of the private key. Otherwise there is no binding of an entity to a keypair, and no cert can have any validity whatsoever. What precisely do you think a certificate is? - M ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
