On Mon, Jan 09, 2006 at 08:41:56PM -0700, Kurt Fitzner wrote: > David Shaw wrote: > > Anyway, do this: > > > > gpg --expert --cert-digest-algo (thehash) -u (thekeyid) --sign-key > > (thekeyid) > > Does this mean that personal-digest-preferences and/or a key's digest > preferences doesn't dictate what digest algorithm is used for > self-signatures?
Yes. Signing a document and signing a key are not the same thing, and must not be artificially glued together just because they are both signatures. > If this is the case, it seems to me to be a little dangerous. Why? > How does one tell what digest algo is used for one's self sigs? gpg --export (thekey) | gpg --list-packets David _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
