small security glitches

Werner Koch wk at
Sat Mar 3 11:59:53 CET 2012

On Fri,  2 Mar 2012 08:50, dkg at said:

> I believe that GnuPG had its own implementation of such an integrity
> check before the standardization was settled.

Right, since version 1.0.2 (2000-07-12).  With version 1.1,91
(2002-08-04) gpg even defaults to MDC packets if one of the modern
algorithms is used (e.g. AES of Twofish).  PGP is able to decrypt and
check MDC packages since PGP 7.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Gnupg-users mailing list