Add a comment about RIPEMD/160

author Rafaël Carré <funman@videolan.org>

Sun, 18 May 2008 13:24:52 +0000 (15:24 +0200)

committer Rafaël Carré <funman@videolan.org>

Sun, 18 May 2008 13:24:52 +0000 (15:24 +0200)
author Rafaël Carré <funman@videolan.org>
Sun, 18 May 2008 13:24:52 +0000 (15:24 +0200)
committer Rafaël Carré <funman@videolan.org>
Sun, 18 May 2008 13:24:52 +0000 (15:24 +0200)
diff --git a/include/vlc_update.h b/include/vlc_update.h

index 2bf5318b0cfcd3c93c7cbb33e6b6eb080ded67bb..a32c474e62baa393e3eb90d9f1c3b3221515e5ee 100644 (file)
--- a/include/vlc_update.h
+++ b/include/vlc_update.h
@@ -44,6 +44,10 @@
  /*
   * XXX
   *  When PGP-signing a file, we only sign a SHA-1 hash of this file
+ *  The DSA key size requires that we use an algorithm which produce
+ *  a 160 bits long hash
+ *  An alternative is RIPEMD160 , which you can use by giving the option
+ *      --digest-algo RIPEMD160 to GnuPG
   *
   *  As soon as SHA-1 is broken, this method is not secure anymore, because an
   *  attacker could generate a file with the same SHA-1 hash.
author	Rafaël Carré <funman@videolan.org>
	Sun, 18 May 2008 13:24:52 +0000 (15:24 +0200)
committer	Rafaël Carré <funman@videolan.org>
	Sun, 18 May 2008 13:24:52 +0000 (15:24 +0200)