Chris Palmer chris at
Thu Feb 3 18:32:49 UTC 2011

On Feb 2, 2011, at 9:18 AM, Jacob Appelbaum wrote:

> That's likely because some CAs but not all CAs will insert random data
> into the serial number field as a method of injecting entropy into
> issued certificates. Can you dump the CA names with those?

No, almost all the valid_certs are like this, so it would be a huge list. Also, even if the CA just hashes a timestamp, it will "look" random in my query results.

Chris Palmer
Technology Director, Electronic Frontier Foundation

More information about the tor-dev mailing list