status: establishing a PGP web of trust

Robert J. Hansen rjh at
Sat Oct 1 04:11:17 CEST 2011

On 9/30/2011 8:57 PM, Marcio B. Jr. wrote:

Before people panic, there are no known weaknesses in DSA.  The SHA-1
hash algorithm has some severe problems, but there's nothing in DSA that
requires the use of SHA-1: you can replace it with any 160-bit hash.

Let's not panic, and let's not migrate away from DSA without good
reason.  :)  Migrate away from SHA-1, sure, but DSA is fine.

More information about the Gnupg-users mailing list