restrict the set of accepted digest algorithms
Hauke Laging
mailinglisten at hauke-laging.de
Tue Feb 10 11:29:53 CET 2015
Am Di 10.02.2015, 03:45:31 schrieb HW42:
> is there an option to restrict the set of "accepted" (see below) set
> of digest algorithms (after searching the man page I don't think so)?
That is not possible (in the general case and the one you are interested
in) because the standard required SHA-1 to be accepted.
But, of course, you are not required to use the exit code for a
decision. Run
gpg -v --status-fd 1 --verify
and check the output for a line starting with "[GNUPG:] VALIDSIG". It if
appears then the seventh field after VALIDSIG is the digest algo number.
Check that against your set.
Hauke
--
Crypto für alle: http://www.openpgp-schulungen.de/fuer/unterstuetzer/
http://userbase.kde.org/Concepts/OpenPGP_Help_Spread
OpenPGP: 7D82 FB9F D25A 2CE4 5241 6C37 BF4B 8EEF 1A57 1DF5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 603 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20150210/4aa2f119/attachment.sig>
More information about the Gnupg-devel
mailing list