Can't check signature, DSA key 9C973C92 requires a 256 bit or larger hash

Werner Koch wk at
Mon Mar 17 18:11:15 CET 2014

On Mon, 17 Mar 2014 15:39, dkg at said:
> So gpg's behavior seems to be non-uniform here.  That said, i'd love to
> be able to tell gpg to ignore or explicitly reject signatures made by
> strong keys with MD5 digests.

There is a new option in master:


       Signatures made with the broken MD5 algorithm are normally
       rejected with an ``invalid digest algorithm'' message.  This
       option allows the verification of signatures made with such weak

Right, at some time we may need to add SHA-1 here.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Gnupg-users mailing list