>Message: 8 >Date: Tue, 3 Jan 2006 19:43:01 -0500 >From: David Shaw <[EMAIL PROTECTED]> >Subject: Re: updating a key's self-signature
>Yes, but note that it's still possible for someone to get the old >self-sig from a keyserver. what good would that do anyone once the old signature hash is no longer trusted, and the key is updated with the new one ? >Anyway, do this: > >gpg --expert --cert-digest-algo (thehash) -u (thekeyid) --sign-key >(thekeyid) ok, Thanks! worked perfectly, updated key with new self-sig already uploaded >Despite the recent attacks, I'd use SHA-1. i'd prefer whirpool, but settled for sha-256 ;-) >Why did you self-sign a v4 RSA key with MD5 anyway? wasn't my choice ;-( (relatively 'old' key, circa 2001) was all that was available at the time from pgp, and gnupg wasn't allowing 4k keys yet vedaal Concerned about your privacy? Instantly send FREE secure email, no account required http://www.hushmail.com/send?l=480 Get the best prices on SSL certificates from Hushmail https://www.hushssl.com?l=485 _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
