please give us safer defaults for gnupg
adrelanos
adrelanos at riseup.net
Tue Dec 17 00:11:24 CET 2013
Werner Koch:
> On Mon, 16 Dec 2013 18:37, adrelanos at riseup.net said:
>
>> [This was originally planed as an open letter, but I thought it might
>> be better to hear your arguments beforehand.]
>
> May I suggest to read the archives of just a few weeks to collect the
> reasons why suggestions of using SHA-512 are missing the point.
I'll do.
> Some
> folks here must have bleeding fingertips from repeating the arguments
> over and over.
I apologize if I haven't searched thoroughly enough in past and have
missed the thread suggesting to crank up the default. I can imagine that
running a project as this requires nerves of steel.
> Having said this, I like to appreciate that you have such a trust in us
> GnuPG hackers in that our coding practice and development environment is
> bug free at a level that only cracking algorithms is the danger to your
> data. I think Adi Shamir was it who said: "Nobody breaks crypto
> algorithms; they work around the crypto".
More information about the Gnupg-users
mailing list