Hello,
AFAIK it is NOT possible to create a fake cert from a signature, you
need to generate two specially crafted certs at the same time and get
one of them signed. So existing intermediate certs should not be much
of a problem. Any cert issued on a user-submitted (thus possibly
malicious) CSR is.
Sincerely
Jan
--
Please avoid sending mails, use the group instead.
If you really need to send me an e-mail, mention "FROM NG"
in the subject line, otherwise my spam filter will delete your mail.
Sorry for the inconvenience, thank the spammers...
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
