[tor-bugs] #20209 [Applications/Tor Browser]: Torbrowser 6.5a3 packages now signed with sha1, not sha512

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Sep 21 21:35:25 UTC 2016


#20209: Torbrowser 6.5a3 packages now signed with sha1, not sha512
-------------------------------------------------+-------------------------
 Reporter:  arma                                 |          Owner:  tbb-
                                                 |  team
     Type:  defect                               |         Status:  new
 Priority:  Medium                               |      Milestone:
Component:  Applications/Tor Browser             |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  TorBrowserTeam201609,                |  Actual Points:
  GeorgKoppen201609                              |
Parent ID:                                       |         Points:
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+-------------------------

Comment (by yawning):

 Replying to [comment:2 gk]:
 > Actually, looking closer, I think the key is good. What is missing is an
 update of the `gpg.conf` file.

 Erp.  Trac refused to tell me that you wrote that.  Sorry.  And yes, the
 subkey and associated self signature look fine.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20209#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list