Michael Leone on 14 Dec 2015 08:04:26 -0800
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
[PLUG] Moving from SHA1 to SHA2 for self-signed certificates
- From: Michael Leone <firstname.lastname@example.org>
- To: PLUG <email@example.com>
- Subject: [PLUG] Moving from SHA1 to SHA2 for self-signed certificates
- Date: Mon, 14 Dec 2015 11:04:00 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mike-leone.com; s=google; h=mime-version:from:date:message-id:subject:to:content-type; bh=ALixY2S3HKJurjwdy+1mVhAG8AK/wdoYvyPkobJ4DnI=; b=Qy15rYe8cdAzZVErXhaPAKK9NSWgRgn8Ff4oKIGY+EOHUH13OQI6Oy1fgvczJAeHpI GpwuKD7IBZKqoVWF25wzA3fuUZLqH9XttPhukERCfFUV/v/pxTVaJFRa2YK0U0lPw8MP FcTfvUPeETjt1C094YnRWyEBKtJ0h8XM1c2u4=
- Reply-to: Philadelphia Linux User's Group Discussion List <firstname.lastname@example.org>
- Sender: "plug" <email@example.com>
I have a question. I have set up my own internal CA to issue certs for my organization. It uses SHA1 as it's default md (I set this up a few years back, on an old Ubuntu VM). I know SHA1 is being deprecated, but I figure that since it's only for internal use, it's less of an issue than for external certificates, which might not be recognized when SHA1 support goes away.
So how would I go about upgrading my CA cert to SHA2? I suppose I should also re-issue the SHA1 certs, once that's done.
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug