Some colleagues have been finding that "openssl x509 -hash" produces different results on netbsd-5 vs -current (late 2011). The results are consistent between i386/amd64. (The hashes are used as symlinks in a CA directory to allow finding trust anchor CA certs; we are using a private CA.) 1) Is anyone else seeing this? 2) Is there a notion that these hashes are meant to be computed/used on a single machine, or are they meant to be broadly portable? The man page doesn't explain this very well.
Description: PGP signature