[GnuPG-users] Importing old PGP key

Kiss Gabor (Bitman) kissg at ssg.ki.iif.hu
Wed Aug 13 16:09:11 CEST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> I'd start by asking whether you really need that key.  512-bit RSA is
> nowhere near modern standards of sufficiency; it is quite likely that in
> just a few years such keys will be able to be broken by motivated high
> school students.

This key is to sign control messages of the hun.* newsgroups.
It is quite unlikely that someone wants to spend any time with
breaking of it. :-)
It is no worth to do it.
However administering and distribute a new key may be problematic.
I don't know yet how much.

> RSA-512 is grossly inadequate for essentially any serious cryptographic
> purpose.
> 
> If you absolutely _must_ have this key in GnuPG, well, we can help you
> do it.  But first ask yourself whether you should be migrating to 2kbit
> keys.  If so, then now is the ideal time to do it.

If this cannot be done by my self in one hour then I figure out
what is the cost of changing the key.

Thanks for your advices.

Gabor
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFIousQd2oiOrtquzgRArG1AKDHANs38lIlvPuqt7Kuvgd4HRsCXQCg0VLL
GT/b1bb+YqdpxqVH5nDfrmI=
=+2W1
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list