On 07/20/2018 03:04 AM, Eliezer Croitoru wrote:
> I think we can use MD5/SHA1/SHA256 or even CRC32 to show the "freshness" of
> the certificate.
Sorry, you lost me: I see no connection between the previous discussion
about CA keys and your new statement about something you call
certificate "fresh
I think we can use MD5/SHA1/SHA256 or even CRC32 to show the "freshness" of the
certificate.
Also this way the ssl_db folder will be free of the burden of tight 600 or 700
permissions.
Did I got it right?
Thanks,
Eliezer
Eliezer Croitoru
Linux System Administrator
Mobile: +972-5-28704261
