Problems with certificates.

[Derek Atkins]

Just a quick clarification...

> PGP KeyIDs are 8 hexes long (formerly 6), and there have been some natural
> collisions and it's easy to manufacture them.  On the other hand,
> the MD5 hash used for key fingerprints is 128 bits long, and
> cryptographically strong.

The printable part of the keyid is 8 hexes long.  The internal keyID
that PGP uses for choosing keys is actually 8 bytes, not 8 hexes.
Besides, its not the length that matters, but the security.

-derek