On Feb 18, 2009, at 10:43 AM, Landon Fuller wrote:
... and signatures could still be verified.
Spoke a little too soon. Signatures are written out with the x509
subjectkeyidentifier from the public key.
A mismatched pair would need to have matching subjects for validation,
and that assumes that recipient info continues to be encoded in the
same way. If the issuer and serial number were used instead, this
would fail.
-landonf
PGP.sig
Description: This is a digitally signed message part
------------------------------------------------------------------------------
Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA
-OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise
-Strategies to boost innovation and cut costs with open source participation
-Receive a $600 discount off the registration fee with the source code: SFAD
http://p.sf.net/sfu/XcvMzF8H _______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users
|