cert-digest-algo clarification
Sam Smith
smickson at hotmail.com
Wed Jul 11 19:06:06 CEST 2012
To make sure I understand correctly:
1) cert-digest-algo SHA256 = will use SHA256 to sign KEYS with regardless of what preferences the key holder has stipulated
2) digest-algo SHA256 = will use SHA256 to sign MESSAGES with regardless of what preferences the recipient of the message has stipulated
Do I understand these commands correctly?
From: smickson at hotmail.com
To: kristian.fiskerstrand at sumptuouscapital.com; gnupg-users at gnupg.org
Subject: RE: How to "activate" gpg.conf entries?
Date: Wed, 11 Jul 2012 11:57:29 -0400
>
For clearsigned messages, yes, for a message sent to someone else
while using their public key,
> it will depend on the capabilities
specified in their preference.
which command states this preference for when a message is sent to someone using their public key? the "default-preference-list" is for gen new key. Is it also used to tell others what preference I have for when they digitally sign a message that is intended for me? Or is there another command that specifies my preference for when they sign a message that is intended for me?
Date: Wed, 11 Jul 2012 17:50:25 +0200
From: kristian.fiskerstrand at sumptuouscapital.com
To: smickson at hotmail.com
CC: gnupg-users at gnupg.org
Subject: Re: How to "activate" gpg.conf entries?
On 2012-07-11 17:46, Sam Smith wrote:
> Thanks. The clearsign "test"
worked.
>
> What does "cert-digest-algo" do? I read the description in
the GnuPG
> manual and what you quoted, but I still don't understand.
Could
> someone explain to me what cert-digest-algo does and how it
differs
> from digest-algo when placed in gpg.conf?
Note that cert-digest-algo specify "when signing a key", which is
different than signing a message.
> so "personal-digest-preferences SHA256" will specificy that
SHA256 be
> used for digitally signing my messages, right?
For clearsigned messages, yes, for a message sent to someone else
while using their public key, it will depend on the capabilities
specified in their preference.
> and "default-preference-list" is only used for when user
generates a
> new key, right?
>
right
--
----------------------------
Kristian Fiskerstrand
http://www.sumptuouscapital.com
Twitter: @krifisk
----------------------------
Corruptissima re publica plurimæ leges
The greater the degeneration of the republic, the more of its laws
----------------------------
This email was digitally signed using the OpenPGP
standard. If you want to read more about this
The book: Sending Emails - The Safe Way: An
introduction to OpenPGP security is now
available in both Amazon Kindle and Paperback
format at
http://www.amazon.com/dp/B006RSG1S4/
----------------------------
Public PGP key 0xE3EDFAE3 at http://www.sumptuouscapital.com/pgp/
_______________________________________________
Gnupg-users mailing list
Gnupg-users at gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20120711/41391a46/attachment-0001.htm>
More information about the Gnupg-users
mailing list