* martin f krafft (madduck@debian.org) [021125 12:57]:
> also sprach Vineet Kumar <debian-user@virtual.doorstop.net> [2002.11.25.2100 +0100]:
> > A certificate is a signed public key. The expiration date is associated
> > with the signature; the public key remains the same. Since the data
> > being signed changes, the signature (and hence its fingerprint) must
> > change.
>
> But you just contradicted yourself. The public key remains the same,
> so the data being signed remains the same.
Woops, I left out that the data includes the signature date and
expiration date -- those are the parts that change. I'm actually not
sure on all the specifics, of exactly what the data is in this case, but
in general, any change in the data should result in a completely
different signature.
good times,
Vineet
--
http://www.doorstop.net/
--
#include<stdio.h>
int main() {
puts("Reader! Think not that \n"
"technical information \n"
"ought not be called speech;");
return 0;
}
Attachment:
pgpAv5izSz7ET.pgp
Description: PGP signature