[MlMt] Note that the SHA1 hash...

Thomas Kahle thomas.kahle at jpberlin.de
Mon Mar 1 13:15:52 EST 2021


On 1 Mar 2021, at 16:57, Matthias Schmidt via mailmate wrote:
>> Hi do you use PGP for signing or encrypting mail?  Some time back I had to update my ~/.gnupg/gpg.conf file with this line:
>> personal-digest-preferences SHA512 SHA384 SHA256 SHA224
>> ...to stop MailMate complaining about SHA1 digests.
> still not working, now I get this message:
> Risk analysis	The hash function used for the message digest has been obsoleted due to security concerns. You should change your OpenPGP settings to use a stronger hash algorithm for the digest (such as SHA256).

I use these three:

cert-digest-algo SHA512
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed
personal-digest-preferences SHA512 SHA384 SHA256 SHA224

I think the first might be what you are looking for.


Thomas Kahle
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 561 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freron.com/pipermail/mailmate/attachments/20210301/05cecf22/attachment.sig>

More information about the mailmate mailing list