To make sure I understand correctly: 1) cert-digest-algo SHA256 = will use SHA256 to sign KEYS with regardless of what preferences the key holder has stipulated
2) digest-algo SHA256 = will use SHA256 to sign MESSAGES with regardless of what preferences the recipient of the message has stipulated Do I understand these commands correctly? From: smick...@hotmail.com To: kristian.fiskerstr...@sumptuouscapital.com; gnupg-users@gnupg.org Subject: RE: How to "activate" gpg.conf entries? Date: Wed, 11 Jul 2012 11:57:29 -0400 > For clearsigned messages, yes, for a message sent to someone else while using their public key, > it will depend on the capabilities specified in their preference. which command states this preference for when a message is sent to someone using their public key? the "default-preference-list" is for gen new key. Is it also used to tell others what preference I have for when they digitally sign a message that is intended for me? Or is there another command that specifies my preference for when they sign a message that is intended for me? Date: Wed, 11 Jul 2012 17:50:25 +0200 From: kristian.fiskerstr...@sumptuouscapital.com To: smick...@hotmail.com CC: gnupg-users@gnupg.org Subject: Re: How to "activate" gpg.conf entries? On 2012-07-11 17:46, Sam Smith wrote: > Thanks. The clearsign "test" worked. > > What does "cert-digest-algo" do? I read the description in the GnuPG > manual and what you quoted, but I still don't understand. Could > someone explain to me what cert-digest-algo does and how it differs > from digest-algo when placed in gpg.conf? Note that cert-digest-algo specify "when signing a key", which is different than signing a message. > so "personal-digest-preferences SHA256" will specificy that SHA256 be > used for digitally signing my messages, right? For clearsigned messages, yes, for a message sent to someone else while using their public key, it will depend on the capabilities specified in their preference. > and "default-preference-list" is only used for when user generates a > new key, right? > right -- ---------------------------- Kristian Fiskerstrand http://www.sumptuouscapital.com Twitter: @krifisk ---------------------------- Corruptissima re publica plurimæ leges The greater the degeneration of the republic, the more of its laws ---------------------------- This email was digitally signed using the OpenPGP standard. If you want to read more about this The book: Sending Emails - The Safe Way: An introduction to OpenPGP security is now available in both Amazon Kindle and Paperback format at http://www.amazon.com/dp/B006RSG1S4/ ---------------------------- Public PGP key 0xE3EDFAE3 at http://www.sumptuouscapital.com/pgp/ _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users