2. They have a default skeleton gpg.conf with incompatible digest algo etc. (as discussed many times on the list).
Use of cert-digest-algo isn't really a problem unless you're needing people running old PGP or GnuPG to be able to verify your signatures. That's less of a problem than using digest-algo, which can easily produce message traffic your correspondents can't read. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
