add subkey vs generate new set?

Faramir faramir.cl at gmail.com
Fri Oct 17 07:09:22 CEST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

David Shaw escribió:

> It is not true, though, that you need continually bigger keys to be
> secure.  You just need (somewhat) bigger keys than the current best
> attack to be secure.   The default size in GPG is 2048, which is
> extremely safe.  When in doubt, use the default.

  Maybe setting sha256 as the default hash algo would improve security a
bit, since sha1 is not as strong as it was supposed to be, and in future
_maybe_ it could be more unwelcome discoveries...

  Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBCAAGBQJI+B4CAAoJEMV4f6PvczxAhEkH/03oWAxJfTzls/S+HS7vUJpR
kprcQr4JiH8gwH6aqaZGA+MZVb+GV0l/gKCvm7KocEC1zf3gYO8qRz3TfEVZYQLA
EM3qDZcJPXdte61G2sArct/6qQps1ESCNPlc1ZbKnEtABFJpXq7XCcmFd6rw5Mff
KfjMULXtmHcKdph3zN7mROLAco2zqOg4YQ/1eCqdEEj5TvDSLnpD8rIGeZx+iu8D
8+dOecSU9o74y13v5tmmZ3+tXorYxwhNaVzOJJwkl2oNYmUhJnVzQzR1xsLTAq3T
YZPD6Fk27vZ0dDECLimG1vH1xdUFi3h+7SnlkeMelXCJ5MDN9tJB6wdoK1tR4QM=
=RBh0
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list