Archive no longer accepts uploads signed using SHA-1 or RIPE-MD/160

To: debian-devel-announce@lists.debian.org
Subject: Archive no longer accepts uploads signed using SHA-1 or RIPE-MD/160
From: Ansgar Burchardt <ansgar@debian.org>
Date: Wed, 22 Feb 2017 21:07:23 +0100
Message-id: <[🔎] 87y3wyt2f8.fsf@deep-thought.43-1.org>
Mail-followup-to: debian-devel@lists.debian.org

The archive no longer accepts uploads signed using the SHA-1 or
RIPE-MD/160 algorithms.  This change should only affect a few users:
only 137 out of 44189 uploads processed this year used SHA-1 and none
used RIPE-MD/160.

If your uploads end up rejected due to this change, you have two
options: recent versions of GnuPG (newer than the version included in
Debian 8), should already default to stronger hash algorithms; for older
versions you can add

    personal-digest-preferences SHA256

(or another strong algorithm) to ~/.gnupg/gpg.conf.

Ansgar

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: Bug-Squashing-Party at credativ on 17th-19th March
Previous by thread: Bug-Squashing-Party at credativ on 17th-19th March
Index(es):
- Date
- Thread