--s2k-count: correct value in config file needed?

Peter Pentchev roam at ringlet.net
Mon Apr 18 13:24:30 CEST 2011

On Mon, Apr 18, 2011 at 01:05:03PM +0200, Hauke Laging wrote:
> Hello,
> is the value of --s2k-count written to the key somehow? If not, can you use a 
> key only if the correct value is given in the config file (or command line)? 
> Does a key become kind of useless if you have forgotten the value which was 
> used during the last passphrase change?

For questions like this, it's always best to look at the authoritative
source for the format of various OpenPGP data - RFC 4880 :)  From the way
I read section 5.5.3 (Secret-Key Packet Formats) and then Section 3.7.1
(String-to-Key (S2K) Specifier Types) it would seem that the answer to your
question is yes, the S2K count is stored in the secret key packet.


Peter Pentchev	roam at ringlet.net roam at FreeBSD.org peter at packetscale.com
PGP key:	http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint	FDBA FD79 C26F 3C51 C95E  DF9E ED18 B68D 1619 4553
The rest of this sentence is written in Thailand, on
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: </pipermail/attachments/20110418/5ef8e67f/attachment-0001.pgp>

More information about the Gnupg-users mailing list