On Tue, 8 Oct 2013 02:05, sanv...@unex.es said: > to get reasonable defaults. Is SHA-1 a reasonable default for key > signing?
It is the default becuase SHA1 one is a MUST algorithm for OpenPGP and fingerprints are anyway compuyted using SHA1. SHA256 is not supported by all OpenPGP implementations. BTW, what is your threat model? Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
