... | ... | @@ -14,12 +14,12 @@ |
|
|
cert-digest-algo SHA512
|
|
|
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed
|
|
|
```
|
|
|
- Use a future proof algorithm when generating the key pairsq-keyring-linter
|
|
|
- Use a future proof algorithm when generating the key pair
|
|
|
- RSA >= 4096 bit
|
|
|
- ECC Curve25519
|
|
|
|
|
|
# Validating a key pair
|
|
|
- Use `sq-keyring-linter` from the `sequoia-keyring-linter` package to perform basic certificate checks like certain SHA-1 usage:
|
|
|
- Use `sq-keyring-linter` from the `sequoia-keyring-linter` package to perform basic certificate checks (e.g. use of the unsafe SHA-1 checksum algorithm):
|
|
|
```sh
|
|
|
sq-keyring-linter <(gpg --export "${FULL_PGP_FINGERPRINT}")
|
|
|
```
|
... | ... | |