Re: Certification Authorities are recommended to stop using MD5 altogether

To: debian-security@lists.debian.org
Subject: Re: Certification Authorities are recommended to stop using MD5 altogether
From: Bernd Eckenfels <ecki@lina.inka.de>
Date: Thu, 01 Jan 2009 20:27:13 +0100
Message-id: <[🔎] E1LITCL-0008Pv-00@calista.eckenfels.net>
In-reply-to: <[🔎] 0901011447100.8102@somehost>

In article <[🔎] 0901011447100.8102@somehost> you wrote:
>    Signature Algorithm: md5WithRSAEncryption
>    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

> should be distributed at all.

Yes, because it is the self signature, but since we distribute the CA
certificate it is not checked but trusted. The question is if this CA signes
its issued certificates in a safe way or not.

Gruss
Bernd

Reply to:

References:
- Re: Certification Authorities are recommended to stop using MD5 altogether
  - From: Cristian Ionescu-Idbohrn <cristian.ionescu-idbohrn@axis.com>

Prev by Date: Re: "Certification Authorities are recommended to stop using MD5 altogether"
Next by Date: Re: "Certification Authorities are recommended to stop using MD5 altogether"
Previous by thread: Re: Certification Authorities are recommended to stop using MD5 altogether
Next by thread: URGENT RESPOND
Index(es):
- Date
- Thread