Default hash

Doug Barton dougb at
Thu Feb 24 10:03:52 CET 2011

On 02/23/2011 22:26, Aaron Toponce wrote:
> Given the release of v1.4.10, the SHA256 hashing algorithm is preferred
> over SHA1. Yet, after updating my default preferences with 'setpref' and
> signing some text, SHA1 is still used as the default hashing algorithm.
> Is there something else I need to do to ensure that I'm using SHA256 by
> default for the hash?

You're using a 1024 bit DSA key, which won't allow for 256 bit hashes. 
RIPEMD-160 is the largest you can use, and works well for that kind of key.




	Nothin' ever doesn't change, but nothin' changes much.
			-- OK Go

	Breadth of IT experience, and depth of knowledge in the DNS.
	Yours for the right price.  :)

More information about the Gnupg-users mailing list