Problems changing hash algo for clearsign

Tyler Spivey tspivey at pcdesk.net
Sun May 10 14:52:21 CEST 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello. I'm trying to make any message I clearsign
have a hash of SHA256.
Here is what I've done so far:
I've added "personal-digest-preferences SHA256" to the end of my gpg.conf file. According
to the manpage, this should be enough; since the manpage states:
The most highly ranked digest algorithm in
this list is algo  used  when  signing  without  encryption  (e.g.  --clearsign  or
- --sign). 

but if I gpg --clearsign a test file, the hash at the top says SHA1. I've verified that
My gpg 1.4.9 has sha256,
and I can force it with --digest-algo sha256.
What do I need to do to make it default to that on signs/clearsigns?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkoGzfEACgkQTsjaYASMWKTWuQCfTKhFgEIolXpp3/E37XWzDtmZ
UUQAn2hDssNi9d1dGwMvlJ0ROkFcyci9
=WRan
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list