Re: Using set_serial to control serial number size directly

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Robert Moskowitz <rgm@xxxxxxxxxxxxxxx>, "openssl-users@xxxxxxxxxxx" <openssl-users@xxxxxxxxxxx>
Subject: Re: Using set_serial to control serial number size directly
From: "Salz, Rich via openssl-users" <openssl-users@xxxxxxxxxxx>
Date: Mon, 21 Aug 2017 14:03:55 +0000
Accept-language: en-US
In-reply-to: <1f63ae4c-08d2-0d8f-8e9a-ba61084d5316@htt-consult.com>
References: <7c82709e-e4d0-5efd-c329-7c7549a1be35@htt-consult.com> <BBCFC482-4943-4C4E-8200-7E92FFCA402D@akamai.com> <f672c109-6e46-e11f-b969-90af53f847bf@htt-consult.com> <3D3718DE-EC45-4271-B22F-064A1195F659@akamai.com> <1f63ae4c-08d2-0d8f-8e9a-ba61084d5316@htt-consult.com>
Reply-to: "Salz, Rich" <rsalz@xxxxxxxxxx>, openssl-users@xxxxxxxxxxx
User-agent: Microsoft-MacOutlook/f.1b.0.161010

If the root is going to be trusted, make its serial number be one. ☺
Otherwise use eight bytes of random as the serial number, if you follow CABF guidelines.
 

-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Follow-Ups:
- Re: Using set_serial to control serial number size directly
  - From: Robert Moskowitz

References:
- Using set_serial to control serial number size directly
  - From: Robert Moskowitz
- Re: Using set_serial to control serial number size directly
  - From: Salz, Rich via openssl-users
- Re: Using set_serial to control serial number size directly
  - From: Robert Moskowitz
- Re: Using set_serial to control serial number size directly
  - From: Salz, Rich via openssl-users
- Re: Using set_serial to control serial number size directly
  - From: Robert Moskowitz

Prev by Date: Re: Using set_serial to control serial number size directly
Next by Date: Re: Using set_serial to control serial number size directly
Previous by thread: Re: Using set_serial to control serial number size directly
Next by thread: Re: Using set_serial to control serial number size directly
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Security] [Bugtraq] [Linux] [Linux OMAP] [Linux MIPS] [ECOS] [Asterisk Internet PBX] [Linux API]