Removing AES

Steve Butler sbutler at
Tue Feb 10 08:40:05 CET 2004

Don't need to generate a new key.  Just change the preferences on your
existing key.  Export it.  Give the new export out as your public key.

For example, the company's public key has been changed so it works great
with all versions of PGP with which we have done EDI.

> gpg --no-batch --edit
Secret key is available.

pub  1024D/1B32D54B  created: 2001-10-16 expires: never      trust: u/u
sub  2048g/5A2CEA48  created: 2001-10-16 expires: never     
(1). First Choice Health Network (FCHN) <helpdesk at>

Command> showpref
pub  1024D/1B32D54B  created: 2001-10-16 expires: never      trust: u/u
(1). First Choice Health Network (FCHN) <helpdesk at>
     Cipher: CAST5, AES, AES192, AES256, 3DES
     Digest: SHA1, RIPEMD160, MD5
     Compression: ZLIB, ZIP, Uncompressed
     Features: MDC

I kept the AES items for those folks that can do it.  But, CAST5 is first on
the list for the PGP folks.

Look at the setpref and updpref commands.

-----Original Message-----
From: Adam Pavelec [mailto:apavelec at]
Sent: Tuesday, February 10, 2004 7:28 AM
To: gnupg-users at
Subject: Removing AES

Hash: SHA1

Our organization has a partner who claims that version 7.0.1 of
PGP is incompatible with all versions of GnuPG (as well as PGP
v8.0.2).  Basically, this person has stated that GnuPG defaults
to AES256, AES192, and AES128 symmetric algorithms as the
preferred symmetric algorithms when creating a key, and that
this is the cause of the incompatibility.

Is it possible to create a new GPG key that excludes any and all
AES algorithms.  If so, how would one go about doing such a



Version: GnuPG v1.2.4


Gnupg-users mailing list
Gnupg-users at

CONFIDENTIALITY NOTICE:  This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information.  Any unauthorized review, use, disclosure or distribution is prohibited.  If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.

More information about the Gnupg-users mailing list