Re: tarball signature digest algorithm

Sun, 14 Sep 2014 10:19:09 -0700 

Viktor Dukhovni:
>     $ GNUPGHOME="${PWD}" gpg --verify postfix-2.11.1.tar.gz.asc
>     gpg: Signature made Sun Sep 14 12:40:35 2014 EDT using RSA key ID C12BCD99
>     gpg: Good signature from "Wietse Venema <[email protected]>"

Fine. Having two digests will make the pre-image attacks much harder.

        Wietse

Reply via email to