* Kurt Roeckx: > So it seems that the verisign certificate is using MD2 for > something, but I can't find for what exactly.
The self-signature on the root certificate is MD2. You generally have to ignore root CA self-signatures because they are bogus certificates anyway (if it says "Equifax", it's not really Equifax, etc.) and are only used to carry the public key for the real stuff. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
