[Pkg-openssl-devel] Bug#541735: Bug#541735: libssl0.9.8: unknown message digest algorithm error in heirloom-mailx

[Florian Weimer]

* Kurt Roeckx:

> So it seems that the verisign certificate is using MD2 for
> something, but I can't find for what exactly.

The self-signature on the root certificate is MD2.  You generally have
to ignore root CA self-signatures because they are bogus certificates
anyway (if it says "Equifax", it's not really Equifax, etc.) and are
only used to carry the public key for the real stuff.