kernel.org status: establishing a PGP web of trust
Robert J. Hansen
rjh at sixdemonbag.org
Sat Oct 1 04:11:17 CEST 2011
On 9/30/2011 8:57 PM, Marcio B. Jr. wrote:
> http://lwn.net/Articles/461236/
Before people panic, there are no known weaknesses in DSA. The SHA-1
hash algorithm has some severe problems, but there's nothing in DSA that
requires the use of SHA-1: you can replace it with any 160-bit hash.
Let's not panic, and let's not migrate away from DSA without good
reason. :) Migrate away from SHA-1, sure, but DSA is fine.
More information about the Gnupg-users
mailing list