> On 2015年9月30日, at 上午2:36, Mike StJohns <mstjohns at comcast.net> wrote: > > The first and probably most important is that you can't/shouldn't pick the default signature algorithm solely based on the key type, but instead on the key type and strength. Great. I'll pick up your suggested code. Thanks Max