Félix Sipma <felix+deb...@gueux.org> writes: > I do not see this bug anymore (no need to set > "priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:+SIGN-RSA-SHA224" > in /etc/mandos/mandos.conf). > > So, this bug may be closed, at least on sid... But I would be nice to > understand why it works now :-)
The source of these problems is entirely GnuTLS - it seems it has issues connecting with "SECURE256", especially using OpenPGP keys, and *particularly* when that key is a DSA key with an Elgamal subkey. As I recall, the few times I have had a bit of time to test it I've only gotten confusing results. I will have to do some more tests in my copious spare time. /Teddy Hogeborn -- The Mandos Project http://www.recompile.se/mandos
pgp6LNwJet4oL.pgp
Description: PGP signature
