Ditching OpenPGP, a new approach to signing APT repositories

Konstantin Ryabitsev konstantin at linuxfoundation.org
Tue Jun 29 19:00:00 CEST 2021

On Tue, Jun 29, 2021 at 05:53:53PM +0200, Bernhard Reiter wrote:
> Am Dienstag 29 Juni 2021 14:44:39 schrieb Konstantin Ryabitsev via 
> Gnupg-users:
> > With this change, they are replacing PGP with ed25519, but everything else
> > remains pretty much the same
> But OpenPGP so much more than one algorithm, 
> you can even use ed25519 with OpenPGP today.

Yes, but speaking from personal experience, integrating libsodium into your
automation is significantly easier than almost any other option. Let Debian
folks do what makes most sense for their needs -- what they are doing is
certainly not wrong or heading in the wrong direction.


More information about the Gnupg-users mailing list