rodolphe/dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Display the full key ID in the signature

Browse source 
Until now, the signature used the GPG short key ID to indicate that I
use OpenPGP. It is quite insecure because it takes a few seconds to
generate a new key with the same short key ID and fool someone who tries
to fetch my public key. Therefore, the use of the fingerprint is
recommended.
https://evil32.com/
https://security.stackexchange.com/questions/84280/short-openpgp-key-ids-are-insecure-how-to-configure-gnupg-to-use-long-key-ids-i
This commit is contained in:
Rodolphe Breard 2016-11-26 15:40:58 +01:00
parent 9d1859928f
commit 70753740e3
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
.signature
View file

@ -1,4 +1,4 @@
-- --
Rodolphe Breard Rodolphe Bréard
https://rodolphe.breard.tf/ https://rodolphe.breard.tf/
PGP 6C41C1F2 6818 4DEB 1B3F 527A 16A1 4490 E5DA 7DD0 6C41 C1F2