[PD] post signed puredata.info cert

Hans-Christoph Steiner hans at at.or.at
Mon Jun 6 19:12:44 CEST 2011 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


On Jun 6, 2011, at 5:49 AM, IOhannes m zmoelnig wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 2011-06-02 02:37, Hans-Christoph Steiner wrote:
>>> however, note that:
>>> the puredata.info certificates are signed by cacert.org [1], so  
>>> trusting
>>> the cacert.org authority would help establish a web of trust  
>>> (similar to
>>> gpg) for free server certificates.
>>
>>
>> And here's a signed text version:
>>
>> puredata.info
>>
>> Not Valid Before: April 18, 2011 6:59:44 AM EDT
>> Not Valid After: April 17, 2013 6:59:44 AM EDT
>>
>> SHA1 03:DB:DC:0B:AD:48:73:AF:2D:52:BE:75:3B:D7:F4:0F:18:B8:BA:A7
>> MD5 97:09:4F:C7:6F:61:72:CB:E2:E0:08:38:FA:2F:F0:52
>>
>
> this is indeed true, and the reason for the mismatch is, that i was
> generating completely nonsense fingerprints (just running "md5sum"  
> resp.
> "sha1sum" on the certificate...oops, seems i was tired...)
>
> so here go the correct fingerprints as generated from:
> $ openssl x509 -noout -fingerprint -sha1 -in /path/to/pd.cert
> SHA1 Fingerprint=03:DB:DC:0B:AD:48:73:AF:2D:52:BE:75:3B:D7:F4:0F: 
> 18:B8:BA:A7
> $ openssl x509 -noout -fingerprint -md5  -in /path/to/pd.cert
> MD5 Fingerprint=97:09:4F:C7:6F:61:72:CB:E2:E0:08:38:FA:2F:F0:52
>
>
> now these seem to be more correct :-)
> sorry for the confusion in such a delicate matter.


Yup, looks like everything matches, thanks.

.hc


- ----------------------------------------------------------------------------

Looking at things from a more basic level, you can come up with a more  
direct solution... It may sound small in theory, but it in practice,  
it can change entire economies.     - Amy Smith


-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.12 (Darwin)
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=ono0
-----END PGP SIGNATURE-----

More information about the Pd-list mailing list