On 21/01/14 14:03, Michael Anders wrote: > >> You mean what you personally consider insecure defaults. Please let's not >> confuse people by stating opinions as facts. You're entitled to your opinion, >> though. >> >> HTH, >> >> Peter. >> > > My opinion is that SHA1 should no longer be used.
Of course in the best of worlds it shouldn't be used anymore. But if everyone started signing their emails with SHA1 I couldn't be more pleased, because then you at least have the infrastructure in place, and can upgrade people later. The major problem we're facing is that we can't even get most people to use MD5 or DES. Heck, they don't even know who or what they are, and to be frank they shouldn't have to. Cheers, arne -- Arne Renkema-Padmos @hcisec, secuso.org Doctoral researcher CASED, TU Darmstadt _______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
