From 597e23cadf0ad4c2ae4e0a0584a1f5307447f866 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Rafa=C3=ABl=20Carr=C3=A9?= Date: Sun, 18 May 2008 15:24:52 +0200 Subject: [PATCH] Add a comment about RIPEMD/160 --- include/vlc_update.h | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/include/vlc_update.h b/include/vlc_update.h index 2bf5318b0c..a32c474e62 100644 --- a/include/vlc_update.h +++ b/include/vlc_update.h @@ -44,6 +44,10 @@ /* * XXX * When PGP-signing a file, we only sign a SHA-1 hash of this file + * The DSA key size requires that we use an algorithm which produce + * a 160 bits long hash + * An alternative is RIPEMD160 , which you can use by giving the option + * --digest-algo RIPEMD160 to GnuPG * * As soon as SHA-1 is broken, this method is not secure anymore, because an * attacker could generate a file with the same SHA-1 hash. -- 2.39.2