New GnuPG snapshot
David Shaw
dshaw at jabberwocky.com
Thu Dec 27 15:48:01 CET 2001
On Thu, Dec 27, 2001 at 12:20:39PM +0100, Florian Weimer wrote:
> David Shaw <dshaw at jabberwocky.com> writes:
>
> > > I don't think so. However, most cryptgraphers believe that separated
> > > keys are better, so that is what GnuPG does by default.
> >
> > Someone pointed out to me once that a pleasant side effect of
> > separated keys was that in some places, the Big Scary Gov't could
> > force you to reveal an encryption key, but not an authentication key.
> > If you used the same key for both, then you are out of luck.
>
> On the other hand, if encryption is outlawed, you can be forced to use
> sign-only keys (but they probably would mandate using DSS anyway).
>
> That's why I'd like to have the ability to create RSA sign+encrypt
> keys...
You can in the latest snapshot (you probably can with an earlier
snapshot too). Just use the --gen-key --batch method to generate an
RSA key and give it whatever key flags you like.
David
--
David Shaw | dshaw at jabberwocky.com | WWW http://www.jabberwocky.com/
+---------------------------------------------------------------------------+
"There are two major products that come out of Berkeley: LSD and UNIX.
We don't believe this to be a coincidence." - Jeremy S. Anderson
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 497 bytes
Desc: not available
Url : /pipermail/attachments/20011227/4f1671c3/attachment.bin
More information about the Gnupg-devel
mailing list