OT: GPG or OpenSSL?

Daniel Carrera dcarrera@math.toronto.edu
Mon Aug 5 22:16:06 2002


I don't know how you can use OpenSSL for signatures.

You might consider using MD5 checksums.  More people know how to use md5
than GPG.

Some people opt for having both a checksum and a GPG signature.  GPG
signatures are more secure than checksums, but fewer people will verify
them.


On Mon, 5 Aug 2002, Gerben Wierda wrote:

> I want to create signatures for (free) stuff I distribute. As far as I
> have been able to understand, I can do that with OpenSSL (though how the
> process with OpenSSL should work is not clear to me yet, especially the
> OpenSSL equivalent of GPG/PGP's wwwkeys.[country].pgp.net).
>
> Could people in the know on this list explain the (dis)advantages of
> both systems? Or am I completely misunderstanding the nature of openssl?
>
> Thanks,
>
> G
>
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users@gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>