The archive no longer accepts uploads signed using the SHA-1 or RIPE-MD/160 algorithms. This change should only affect a few users: only 137 out of 44189 uploads processed this year used SHA-1 and none used RIPE-MD/160. If your uploads end up rejected due to this change, you have two options: recent versions of GnuPG (newer than the version included in Debian 8), should already default to stronger hash algorithms; for older versions you can add personal-digest-preferences SHA256 (or another strong algorithm) to ~/.gnupg/gpg.conf. Ansgar
Attachment:
signature.asc
Description: PGP signature