Ian G wrote, On 2008-11-06 12:48: > Nelson B Bolyard wrote: >> What curious things do you notice about these certs? > > Only one key?
Yup. That's the biggie. It allows the MITM to get by with just a single private key. > All have same Issuer + Subject? Yeah, all self signed. All DNs consist of CN=<something>,O=<something> attributes, in that order, and the values of those attributes come from the real https server's cert Subject name. All other attributes from the real server's cert subject name are lost. The Validity period dates also come straight from the real server cert. The 32-bit serial numbers are actually Unix time_t's (count of seconds since midnight Jan 1, 1970 UTC). I believe they show the time the cert was created. 1224115668 Wed Oct 15 17:07:48 2008 1224127195 Wed Oct 15 20:19:55 2008 1224169923 Thu Oct 16 08:12:03 2008 1224169969 Thu Oct 16 08:12:49 2008 1224170001 Thu Oct 16 08:13:21 2008 1224197811 Thu Oct 16 15:56:51 2008 1224211462 Thu Oct 16 19:44:22 2008 1225207685 Tue Oct 28 08:28:05 2008 1225208188 Tue Oct 28 08:36:28 2008 1225208630 Tue Oct 28 08:43:50 2008 1225288698 Wed Oct 29 06:58:18 2008 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
