OpenPGP - MDC Packet - SHA1
OpenPGP Standard RFC 4880 (Not Totally a Linux Question, but as I may be using GnuPG on Linux... I will ask anyhow :)
The Modification Detection Code Packet is defined to use SHA-1, even though it does state in section 13.11. that this can be altered, and gives example methods. However this would cause interoperability, (q1)so I assume there is no standard method of doing this??
(q2)How much of a threat do you believe this to be? Even though the SHA-1 hash is encrypted within the symmetrically encrypted integrity protected data packet.