Changing GPG's default key type

Daniel Kahn Gillmor dkg at
Mon May 4 17:50:33 CEST 2009

On 05/04/2009 10:40 AM, David Shaw wrote:
> Currently, GPG's default key type, the one that is recommended to all
> new users, is a DSA primary key (1024 bits - not "DSA2") with an Elgamal
> subkey.  We are currently thinking about changing the default primary to
> a 2048-bit RSA key.

I fully support this change.  FWIW, openssh has been defaulting to
2048-bit RSA keys for several years now, and has a similarly diverse
array of tools with which it must interoperate.  I've seen no
significant problems reported on openssh-unix-dev since the changeover.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 890 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20090504/045f5767/attachment.pgp>

More information about the Gnupg-devel mailing list