[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[tor-bugs] #4584 [Tor Bridge]: Implement a new certificate serial number strategy
#4584: Implement a new certificate serial number strategy
------------------------+---------------------------------------------------
Reporter: asn | Owner:
Type: defect | Status: new
Priority: normal | Milestone:
Component: Tor Bridge | Version:
Keywords: | Parent: #3972
Points: | Actualpoints:
------------------------+---------------------------------------------------
We currently put time(NULL) in our certificate's serial numbers, which is
not a good idea.
Proposal 179 says to put 8 random bytes as the serial numbers of our new
certificates. It seems like a sane choice.
(Also see #4570 for another prop179 serial number trick which did make it
in.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4584>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs