-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thanks. I think I understand it all, and will tackle it this evening. The problem I had when generating the key is that even though I checked 4096 as the size, only the subkey is 4096. I didn't have an option for the primary key.
- -- Rick On Apr 16, 2007, at 12:49 AM, Charly Avital wrote: > Stoddard Richard wrote the following on 4/16/07 3:43 AM: >> Thanks for the help. Another question, however. I would have liked to >> have not used SHA1 hash, but that was the only option I saw when >> creating my key. Will I be able to change the hash on this key or >> will I need to create a new one? Folks on this list helped me through >> this when I was on Windows, and now I need help with the Apple. (BTW >> - no regrets having switched.) >> >> -- >> Thanks again, >> Rick >> [...] > > Welcome to the Mac! > > Your key: > pub 1024D/9D157C31 created: 2007-04-15 expires: never > usage: SCA > trust: unknown validity: unknown > sub 4096g/3A4E1AB7 created: 2007-04-15 expires: never > usage: E > [ unknown] (1). Richard Stoddard <[EMAIL PROTECTED]> > > shows that the primary key, the one you use for signing, is 1024 bits, > and as far as I can remember, one needs at least 2048 bits. > > But the good news (I think) is that it is a DSA key, and if you are > running gpg 1.4.*, you could enable the following two options in your > gpg.conf file: > enable-dsa2 > digest-algo SHA256 (if you want to use SHA256) > > For this, you have to edit the contents of your gpg.conf file. > I understand you are using GPG Keychain Access. Open its > Preferences..., > that are also accessible from the Apple Menu/System Preferences/ > GnuPG icon. > > Click the + round button at the bottom of the GnuPG window, and add: > enable-dsa2, hit Return. > Click again the same button, and add, in two fields: > digest-algo and to the value field (at the right of the previous > field: SHA256. > Hit Return > > You can also, in that same GnuPG (System Preferences) window, go to > 'Expert', hit the 'Reveal in Finder' button, that will make visible > and > graphically accessible the contents of /.gnupg (the gpg home > directory). > Click the gpg.conf file, open it with a text editor (you have TextEdit > in your operating system) and add the two separate lines: > enable-dsa2 > digest-algo SHA256 > > By the way, you will see in the contents of that gpg.conf many lines > that are preceded by #, which means that whatever follows # is not > enabled, only "commented". > > Hope this is not too confusing... > > Charly > > Your signature verifies fine. > > > > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (Darwin) iD8DBQFGI0uL8lNvqJ0VfDERAg35AJwJrIvuxH78mPJ+XEvYvB3GhQ9JIgCgj6i4 7kd51AdJekHgS66VSonzKR0= =As+r -----END PGP SIGNATURE----- _______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
