please change the default hashing algorithm

Andrew Clausen andrew.p.clausen at
Sun Jul 12 17:47:28 CEST 2015

Hi GPG developers,

By default, GPG uses the SHA1 hashing algorithm, which has been believed to be
weak for over 10 years.[1]  Is it possible to change the default over to

I understand that there are several different uses for hashing algorithms,
governed by the personal-digest-preferences and cert-digest-algo options.
I would think it makes sense to switch both of these over to SHA256, but
it's much more important to switch over personal-digest-preferences.

Previous email discussions on this list have mentioned some kind of
compatibility concerns.  If we can't switch both over immediately, are there
any compatibility concerns with just switching personal-digest-preferences



More information about the Gnupg-devel mailing list