I came across a certificate that has a signer that is SHA1 but it is a SHA2 certificate. Is this actually allowed or is did the CA screw up ? Would it work with a TLS 1.2 negotiation?
Asked
Active
Viewed 28 times
2
-
1Is the SHA1 the root or an intermediate? Note that the SHA1 problem does not impact trusted root certs because, by definition, they're trusted; their authority derives from you having them and not from being checked against their signature. – gowenfawr Mar 09 '17 at 21:59
-
It is the root certificate that has it. So that has answered my question. Thanks!!! – Thomas Cosenza Mar 09 '17 at 23:39