Changing GPG's default key type
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Mon May 4 17:50:33 CEST 2009
On 05/04/2009 10:40 AM, David Shaw wrote:
> Currently, GPG's default key type, the one that is recommended to all
> new users, is a DSA primary key (1024 bits - not "DSA2") with an Elgamal
> subkey. We are currently thinking about changing the default primary to
> a 2048-bit RSA key.
I fully support this change. FWIW, openssh has been defaulting to
2048-bit RSA keys for several years now, and has a similarly diverse
array of tools with which it must interoperate. I've seen no
significant problems reported on openssh-unix-dev since the changeover.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 890 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20090504/045f5767/attachment.pgp>
More information about the Gnupg-devel
mailing list