[Enigmail] New GnuPG 2.0.27

Olav Seyfarth olav at enigmail.net
Sat Mar 21 11:36:57 CET 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi Patrick,

> I'm thinking about adding "--allow-weak-digest-algos" to the GnuPG 
> parameters if GnuPG > 2.0.27 is detected. Would you think this is a good
> idea to get rid of the problem -- or this just postponing the problem?

Please don't. MD5 IS an issue and should not be trusted by default.
Same line of thinking as with the red warning about unencrypted messages.
We should provide (or link to) a help/FAQ page how to solve it.

Olav
- -- 
The Enigmail Project - OpenPGP Email Security For Mozilla Applications
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Dies ist eine elektronische Signatur - http://www.enigmail.net/
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=igUO
-----END PGP SIGNATURE-----



More information about the enigmail-users mailing list