your mail

[Werner Koch]

brian moore <bem at cmc.net> writes:

> I think there's a difference in the defaults between PGP5 and GPG on
> what hash is used: with PGP5, SHA1 is assumed if there is no Hash line:
> in GPG, the default seems to be MD5.

RFC2440 (OpenPGP) says that the default is MD5 - at least the last
time I checked the draft.  Okay, the source (mainproc.c:proc_plaintext)
tells me that we need a hash - I think I have to read the RFC again. 


  Werner