Change s2k count?
Robert J. Hansen
rjh at sixdemonbag.org
Thu Dec 3 21:48:25 CET 2009
Daniel Kahn Gillmor wrote:
> I like the elegance of this solution, but couldn't this calculation be
> confounded by other load on the processor? For example, if i'm
> generating a new key (or changing a passphrase) while also encoding
> video, it would be a shame if gpg were to pick a too-low value.
As you said, there's an easy fix. Why check times/gettimeofday when the
lower-bound method works just as well?
The point is not to get asymptotically as high a count as possible. The
point is to get enough of a count to slow down brute forcers.
More information about the Gnupg-devel