[openssl-users] Using set_serial to control serial number size directly

Salz, Rich rsalz at akamai.com
Mon Aug 21 13:20:57 UTC 2017

    But in doing this, I can't figure out if there is a risk on serial 
    number size for a root CA cert as there is for any other cert.

I don’t understand what attack you are concerned about, but the size of the serial number should not matter for *any* certificate.

More information about the openssl-users mailing list