Hi, On Tue, 29 Aug 2017 at 20:44:41 +0200, Marc Haber wrote: > the Wiki page on https://keyring.debian.org/creating-key.html mentions > that some lines from ~/.gnupg/gpg.conf need to be copied to > ~/.caff/gnupghome/gpg.conf to avoid my caff signatures being SHA-1.
(X-Debbugs-Cc'ing keyring-ma...@debian.org, which according to the footer is the address to use to report problems with that page.) > Otoh, current caff versions in unstable don't seem to write > ~/.caff/gnupghome/gpg.conf at all. > > Is the information from the wiki, on a rather sensitive place about key > generation for DDs, still current? I think some clarification is needed, > but I do not have the deep caff knowledge needed to judge that. Oops I updated https://wiki.debian.org/caff but forgot about the page on keyring.d.o. Indeed ~/.caff/gnupghome/gpg.conf is no longer needed since signing-party 2.3: - if the file exists then it needs to be kept up-to-date; - if it doesn't exist then gpg(1) options that are known to be safe for caff(1), including ‘cert-digest-algo’, are taken from ~/.gnupg/gpg.conf. So new caff users don't have to create ~/.caff/gnupghome/gpg.conf :-) -- Guilhem.
signature.asc
Description: PGP signature
