Page MenuHome GnuPG

gnupg: Do not use SHA1 by default
Open, Needs TriagePublic


There are still couple of uses of SHA1 by default in gnupg and it is probably a time to get rid of these.

Several of the uses are in the protocols or file formats which will be more complicated to change, but these should be pretty straight-forward.

The DNS part which handles SSHFP records is also quite outdated not listing recent key types and fingerprint formats, but from my reading it is not used for anything. Adding here mostly for completeness.