Can create a cert with no serial number?
Michael.Wojcik at microfocus.com
Thu Jun 1 16:05:59 UTC 2023
> From: openssl-users <openssl-users-bounces at openssl.org> On Behalf Of Job Cacka
> Sent: Thursday, 1 June, 2023 09:01
> Intentionally repeating characters in a hash is a great way to provide the hash to be broken.
"great" here is a rather bold claim.
If repeating a few characters in the Subject DN makes any appreciable difference in the work factor for a second-preimage attack on your certificate signatures, you have much bigger problems.
> As I recall there is something about repeating a character more than 3 times consecutively
> that decreases the effectiveness of the hash.
More information about the openssl-users