personal-cipher/digest-preferences

John W. Moore III johnmoore3rd at joimail.com
Sat Jun 17 17:57:23 CEST 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Jørgen Lysdal wrote:
> If i understand the gpg.man correctly..
> 
> The "--personal-cipher-preferences" does only have an effect when
> encrypting to more than one recipient, (besides from symmetrical
> encryption algo selection)
> 
> and
> 
> the "--personal-digest-preferences" only when encrypting and signing
> to more than one recipient. Im i right?
> 
> What does it mean to "factor in their own preferred algorithms when
> algorithms are chosen via recipient key preferences."
> 
> Does it mean that, when i encrypt to a key that has, lets say AES
> TWOFISH, and i use --personal-cipher-preferences TWOFISH AES, is the
> message TWOFISH encryptet andgb

Well, Yes & No.  Your personal-preferences are just that.  These are the
ciphers & digests you prefer using.  When Encrypting to *one* other Key
or Many, GnuPG will compare Your preferences to the ones the
recipient(s) have indicated on their Key are theirs.  GnuPG will then
accommodate  all Recipient(s).

In your example the message would be Encrypted using Twofish.  This is
because you are doing the Encrypting and this is what You *prefer* and
the recipient has shown that s/he can handle Twofish.  Should they click
'Reply' and email you back, it would be Encrypted using AES since they
are originating the Encryption and that's their preference and you have
indicated you find AES acceptable.  In the case of multiple
recipients/Keys, GnuPG will determine the common denominator.  This is
why in large Group Encryption environments you will most likely see SHA1
used as the Hash.  It's "common" to every engine.  In encryption you
will generally find 3DES used as the cipher for the same reason.

JOHN ;)
Timestamp: Saturday 17 Jun 2006, 11:56  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4-svn4159: (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust (US26): http://www.gswot.org
Comment: Homepage:  http://tinyurl.com/9ubue
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCgAGBQJElCZfAAoJEBCGy9eAtCsPHgcIAIosO9VQNLptVqT2QkApZXTq
Ne8zkarkBYmSb6u1mXTzlX6pg28m6rG+6tTs8IzKNJpU0XlH7zl/41ViPaevmapK
EFIVqDkQobobjLJ+sv7Riy7ZVTab+x5mPATIWUnvA9GmxevXgSNCZguybUFYnnMe
NtAk9tCAinp0ccmIeKWLv7nvZWdLiFYlf7RaGl650YcLO6NxAwJDICx+o30n10s7
bqMwKCgKjdAgGV0P+TA3SM/PAtsbSyvnDN5Gb0f9gQG/7mbhHSHkpLW/hrlQPRNm
kaeNiIiHvXdu2vRQj3rmk2oi0l6V8VEEQOs4d/G+h4ZkoUZkdzBF1ZE4MX0vh/0=
=xZJN
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list