beginner type questions

John W. Moore III jmoore3rd at bellsouth.net
Mon Oct 5 22:02:35 CEST 2009 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Durant, Dean wrote:
> Hello, I noticed, on windows (which I truly despise), when I type 
>  
> C:\Documents and Settings\me\Application Data\gnupg>gpg --gen-key
>  
> I get:
> 
> gpg (GnuPG) 2.0.12; Copyright (C) 2009 Free Software Foundation, Inc. (add'l copyleft info)
> 
> Please select what kind of key you want:
>    (1) RSA and RSA (default)
>    (2) DSA and Elgamal
>    (3) DSA (sign only)
>    (4) RSA (sign only)
>  
> on ubuntu, I get these choices (the version of GPG is 2.0.9):
> Please select what kind of key you want:
> 
> (1) DSA and Elgamal (default)
> (2) DSA (sign only)
> (5) RSA (sign only)
> 
> What is the difference?   Isn't RSA better?

Robert's answer was accurate but I'm not sure it was the answer to the
question You were asking.  Between versions 2.0.9 & 2.0.12 the Default
for Key Generation was changed.  This change is viewed as minor by many
which apparently includes the Ubuntu developers.  :)

The reason the Default was changed was to make better use of available
Hash functions.  DSA Signing Keys are limited to 160bit Hashes unless
DSA2 is invoked,  RSA Signing Keys can utilize all the Hash functions
without any 'games' being played.  To eliminate any confusion in the
future and based upon the number of folks who eventually migrated away
from DSA Keys to RSA Keys due to personal perceptions the Default was
changed to RSA.

Additionally, in the very beginning RSA was encumbered by patents which
have now expired.  You can easily work around this in Ubuntu at present
by selecting option 5 and then generating an RSA Encryption sub-Key.

HTH

JOHN ;)
Timestamp: Monday 05 Oct 2009, 16:02  --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: http://www.gswot.org
Comment: Personal Web Page:  http://tinyurl.com/yzhbhx

iQEcBAEBCgAGBQJKylDaAAoJEBCGy9eAtCsPdPgIAI/SfIwVc2RVR8I8lhBcem8s
vJzcAz+gZ41vH0afLPRo3RbUmJbxhkzX2qxPZ8w8mH4csTSIAfCtdlG9h+sqXWK/
HB8Hxxk1zVahPSqHo8i5PT//cSM1SMES5K5dw9dFZrCO0IcQZwy81MDxJt6sw7cK
mxCO89fZVC1PpPgh352jWh1DUKqvQ1K5hok8zAzvQvdKimWfoG7K2sRXMuvDfn30
6F6+kWCGEzM3C+oMqEhLXAqhQl1FCfv4slyfmZUhHLc8Q30RJy3R4gIYpigVl0h0
pP5ZQy01SqklRBxg1naWBx/rVAUuWYdIiKnGXPVNf11GLA7mOMsZVIzXni6HYXU=
=ycQz
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list