[PATCH] avoid publishing the GnuPG version by default
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Fri Aug 5 16:36:01 CEST 2016
On Fri 2016-08-05 06:28:58 -0400, Werner Koch wrote:
> You are right, the "Version:" has no technical meaning. The "Hash: foo"
> header for cleartext signatures is required to replace the one-pass
> signature packets we have in binary signatures.
Yep. And Hash: isn't necessary (nor is it generated) when doing
detached signatures or PGP/MIME signatures anyway (the PGP/MIME
multipart/signed content-type has a micalg= parameter that achieves the
same purpose).
> I just pushed dkg's patch to master.
thanks!
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 948 bytes
Desc: not available
URL: </pipermail/attachments/20160805/7a443933/attachment.sig>
More information about the Gnupg-devel
mailing list