updating a key's self-signature
David Shaw
dshaw at jabberwocky.com
Tue Jan 10 04:52:09 CET 2006
On Mon, Jan 09, 2006 at 08:41:56PM -0700, Kurt Fitzner wrote:
> David Shaw wrote:
> > Anyway, do this:
> >
> > gpg --expert --cert-digest-algo (thehash) -u (thekeyid) --sign-key (thekeyid)
>
> Does this mean that personal-digest-preferences and/or a key's digest
> preferences doesn't dictate what digest algorithm is used for
> self-signatures?
Yes. Signing a document and signing a key are not the same thing, and
must not be artificially glued together just because they are both
signatures.
> If this is the case, it seems to me to be a little dangerous.
Why?
> How does one tell what digest algo is used for one's self sigs?
gpg --export (thekey) | gpg --list-packets
David
More information about the Gnupg-users
mailing list