Change s2k count?

Robert J. Hansen rjh at
Thu Dec 3 21:48:25 CET 2009

Daniel Kahn Gillmor wrote:
> I like the elegance of this solution, but couldn't this calculation be
> confounded by other load on the processor?  For example, if i'm
> generating a new key (or changing a passphrase) while also encoding
> video, it would be a shame if gpg were to pick a too-low value.

As you said, there's an easy fix.  Why check times/gettimeofday when the
 lower-bound method works just as well?

The point is not to get asymptotically as high a count as possible.  The
point is to get enough of a count to slow down brute forcers.

More information about the Gnupg-devel mailing list