-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Daniel Kahn Gillmor wrote:
On 02/01/2009 08:24 PM, Peter Thomas wrote:
After reading the whole RFC I've found several places where SHA1 is
given as the only possible algorithm,
This was just discussed on the list last month in a thread titled "A
review of hash function brittleness in OpenPGP":
http://www.imc.org/ietf-openpgp/mail-archive/msg30323.html
It would be worth reviewing that thread because it contains relevant
discussion.
http://www.imc.org/ietf-openpgp/ has links to the indexed archive as well as how
to obtain the entire archive in mbox format
- --
John P. Clizbe Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or
mailto:pgp-public-keys(_at_)gingerbear(_dot_)net?subject=HELP
Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4907-2008-12-21 (Windows XP)
Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Comment: Be part of the £33 ECHELON -- Use Strong Encryption.
Comment: It's YOUR right - for the time being.
Comment: Using GnuPG with SeaMonkey - http://enigmail.mozdev.org
iJwEAQECAAYFAkmGWgwACgkQvh+YERi7NzqwlQP9HyFNw/9YKjGgelaUD1SRMSid
huWosy5a01+mHC4SY49RSKe3ygmC8KY349azBjsu9K3sc/O5rJyGKBUHkJ3FzsVl
7svhw5DRtrAndHjwTphngWVbsvtTFdmleUoJLDUVsd/WN/I02rNAkwyoOU7YcdTX
JUO7OsH8GResDZMmRmyIRgQBEQIABgUCSYZaDAAKCRAdBKxKYI0qEJw2AKCUAPMU
iaDYZFtpRJ83D6nc1EHzeACfZL/1N/FjFmbaCv+I+18dYur/mCo=
=w1Jj
-----END PGP SIGNATURE-----