[PATCH] avoid publishing the GnuPG version by default

Daniel Kahn Gillmor dkg at fifthhorseman.net
Fri Aug 5 16:36:01 CEST 2016

On Fri 2016-08-05 06:28:58 -0400, Werner Koch wrote:
> You are right, the "Version:" has no technical meaning.  The "Hash: foo"
> header for cleartext signatures is required to replace the one-pass
> signature packets we have in binary signatures.

Yep.  And Hash: isn't necessary (nor is it generated) when doing
detached signatures or PGP/MIME signatures anyway (the PGP/MIME
multipart/signed content-type has a micalg= parameter that achieves the
same purpose).

> I just pushed dkg's patch to master.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 948 bytes
Desc: not available
URL: </pipermail/attachments/20160805/7a443933/attachment.sig>

More information about the Gnupg-devel mailing list