[SSL Observatory] Syrian fake certificate for Facebook
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Thu May 5 22:20:05 PDT 2011
katmagic <the.magical.kat at gmail.com> writes:
>https://www.eff.org/files/syrian-facebook-attack.pem
Thanks. OK, it's something weird, note the 512-bit key, and the
basicConstraints is non-critical. OTOH they got the 64-bit serial number
signedness right. Anyone have any ideas wot done it? It doesn't look like
Windows, OpenSSL, or Entrust.
Peter.
More information about the Observatory
mailing list