Re: What do we do about GnuPG 1.4 in debian?

To: pkg-gnupg-maint@alioth-lists.debian.net, gnupg1@packages.debian.org, debian-qa <debian-qa@lists.debian.org>
Subject: Re: What do we do about GnuPG 1.4 in debian?
From: Paul Wise <pabs@debian.org>
Date: Sat, 30 Apr 2022 08:26:24 +0800
Message-id: <[🔎] 4f6017022f7c6ecff96078d5925ebe17e4911025.camel@debian.org>
In-reply-to: <[🔎] 87levn308h.fsf@hope.eyrie.org>
References: <[🔎] 87sfpvwp5n.fsf@fifthhorseman.net> <[🔎] 662632679959aef2dfb69e7a1b6b80df050ee653.camel@debian.org> <[🔎] 87levn308h.fsf@hope.eyrie.org>

On Fri, 2022-04-29 at 17:04 -0700, Russ Allbery wrote:

> Yes, verifying signatures using obsolete keys or obsolete algorithms
> which are no longer supported in GnuPG 2.

and nothing other than GnuPG 1 supports these keys? It seems like it
would be a good idea for GnuPG 2 or other OpenPGP implementation to at
least have an option to re-enable them temporarily. In any case I
suppose there is always snapshot.debian.org if someone needs GnuPG 1.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: What do we do about GnuPG 1.4 in debian?
  - From: Russ Allbery <rra@debian.org>

References:
- What do we do about GnuPG 1.4 in debian?
  - From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- Re: What do we do about GnuPG 1.4 in debian?
  - From: Paul Wise <pabs@debian.org>
- Re: What do we do about GnuPG 1.4 in debian?
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Re: What do we do about GnuPG 1.4 in debian?
Next by Date: Re: What do we do about GnuPG 1.4 in debian?
Previous by thread: Re: What do we do about GnuPG 1.4 in debian?
Next by thread: Re: What do we do about GnuPG 1.4 in debian?
Index(es):
- Date
- Thread