Can create a cert with no serial number?

Michael Wojcik Michael.Wojcik at
Thu Jun 1 16:05:59 UTC 2023

> From: openssl-users <openssl-users-bounces at> On Behalf Of Job Cacka
> Sent: Thursday, 1 June, 2023 09:01

> Intentionally repeating characters in a hash is a great way to provide the hash to be broken.

"great" here is a rather bold claim.

If repeating a few characters in the Subject DN makes any appreciable difference in the work factor for a second-preimage attack on your certificate signatures, you have much bigger problems.

> As I recall there is something about repeating a character more than 3 times consecutively
> that decreases the effectiveness of the hash.

Citation needed.

Michael Wojcik

More information about the openssl-users mailing list