Michael Bienia wrote: > Hello, > > does signing with the OpenPGP card only work with SHA1 as digest-algo? > > With SHA1 and RIPEMD160 gpg asks for the PIN but only SHA1 generates a > working signature. Trying RIPEMD160 I get: > | gpg: checking created signature failed: bad signature > | gpg: signing failed: bad signature > | gpg: signing failed: bad signature >
>From the basiccard website I read that it only supports sha-1, so this might be true. I noticed the same just recently. It might be nice to have some sort of hybrid setup... half the signature generated on card half on the host, but that would probably have a huge impact on both the openpgp smartcard protocal and gnupg and the software on the card. > Michael > > _______________________________________________ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users -- Met vriendelijke groeten, Remco Post SARA - Reken- en Netwerkdiensten http://www.sara.nl High Performance Computing Tel. +31 20 592 3000 Fax. +31 20 668 3167 PGP Key fingerprint = 6367 DFE9 5CBC 0737 7D16 B3F6 048A 02BF DC93 94EC "I really didn't foresee the Internet. But then, neither did the computer industry. Not that that tells us very much of course - the computer industry didn't even foresee that the century was going to end." -- Douglas Adams _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
