On Mon, 2016-06-06 at 23:44 +0200, Christoph Anton Mitterer wrote: > I'd agree,.. but I think it would be worth to EITHER include the > above > in the documentation of debarchiver (since it will probably take some > time until gpg changes its default to >SHA1)... OR, one could > possibly > make a check for debarchiver, to see whether something better than > SHA1 > was already used and (*only*) if not, set that manually when signing. > But such a check would be actually a bit tricky, because it would > need > to find out which UserID is actually used for signing, and check the > preferences of that.
Another way would probably be to simply add the preference setting to the gpg config (for the debarchiver user)... may in the beginning if later (user) settings would override such. But I personally wouldn't like that, as I think tools shouldn't mess around with that automagically...
smime.p7s
Description: S/MIME cryptographic signature
