Uncommenting the "priority" setting in mandos.conf and appending ":+SIGN-RSA-SHA224" makes it work; i.e. this line should be present in /etc/mandos.conf:
priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:+SIGN-RSA-SHA224 I wish I knew why this works - I arrived at this by trial and error. I'm suspecting a GnuTLS regression with SECURE256 and CTYPE-OPENPGP. Note: The clients need no changes. /Teddy Hogeborn -- The Mandos Project http://www.recompile.se/mandos -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
