[Announce] GnuPG 2.2.1 released

Werner Koch wk at gnupg.org
Wed Sep 20 08:40:54 CEST 2017

On Tue, 19 Sep 2017 19:55, rjh at sixdemonbag.org said:

> I, personally, would like to see GnuPG refuse to use 64-bit block
> ciphers for encryption unless an option was set (--allow-old-ciphers,
> perhaps).  Leave the algorithms in there for RFC conformance, let them

We can't do that in 2.2 but printing a warning to raise awareness is

Frankly, I doubt that this is a real world risk, because mails are too
short.  For backups and other large data encryption tasks, I assume that
AES will anyway be used due to the very noticiable performance
advantages.  And AES is the default anyway.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: </pipermail/attachments/20170920/59b0a86c/attachment.sig>

More information about the Gnupg-devel mailing list