On Thu, 29 May 2025 12:55, Richard Ulrich said: > grub can verify them when the system boots. Most of the DVD ISO builds > reproducibly. At the moment I am trying to get also those signatures > reproducible.
DSA style signatures created using the RFC-6979 method are at their core deterministic. However, the question is what you want to achieve with this: The party who wants to create such a signature needs access to the smartcard used to create the signature in the first place. Even if you don't use a smartcard (you do, right?), you would need to share the private key - so what's the point of the signature then? Shalom-Salam, Werner -- The pioneers of a warless world are the youth that refuse military service. - A. Einstein
openpgp-digital-signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
