Use other hash than SHA-1
Allen Schultz
allen.schultz at gmail.com
Sat May 2 21:46:14 CEST 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, May 2, 2009 at 7:45 AM, David Shaw
<dshaw at jabberwocky.com> wrote:
> The short answer is that you can only use a 160-bit hash with
your default
> DSA key. That means SHA-1 or RIPEMD/160. There is a feature
you can enable
> (--enable-dsa2) that will allow you to use a bigger hash --
but you can
> still only use 160 bits worth of it. So if you use SHA-256,
you're actually
> only taking 160 bits worth of it and discarding the rest.
I'm stuck with that smaller key until I change the subkeys, but
a question about the two hashes. What's the difference in SHA-1
and RIPEMD/160?
Allen
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32) - GPGshell v3.72
iEYEARECAAYFAkn8owIACgkQV5r3Eu55xjZv0QCfTYZAarjQZlpt3Fo+QLkjXiw7
JIYAn0tJf2SEMR/fCquHzj8+FS1GqY5g
=QkRh
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list