gpg --gen-key --batch RSA keys default to 1024 bits
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Fri Aug 30 05:22:56 CEST 2013
gpg --gen-key currently defaults interactively to creating 2048-bit RSA
keys.
But using gpg --gen-key --batch with Key-Type: RSA defaults to 1024 bits:
>
> 0 dkg at alice:/tmp/cdtemp.MTYWwo$ printf "Key-Type: RSA\nName-Real: foobar\n" | gpg --batch --gen-key --yes
> gpg: keyring `/tmp/cdtemp.MTYWwo/secring.gpg' created
> gpg: keyring `/tmp/cdtemp.MTYWwo/pubring.gpg' created
> gpg: keysize invalid; using 1024 bits
>
> Not enough random bytes available. Please do some other work to give
> the OS a chance to collect more entropy! (Need 257 more bytes)
> +++++
> +++++
> gpg: /tmp/cdtemp.MTYWwo/trustdb.gpg: trustdb created
> gpg: key 2576700C marked as ultimately trusted
> 0 dkg at alice:/tmp/cdtemp.MTYWwo$
It seems like these defaults should be aligned with each other.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1027 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20130829/c19333fd/attachment.sig>
More information about the Gnupg-devel
mailing list