Setpref is not working or is it a bug or something?

Robin Mathew Rajan mail at robinmathewrajan.com
Sun Nov 30 03:10:21 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi bro, :)

Thanks for correcting me. 

Regards! :)
Robin Mathew Rajan


On 29-11-2014 AM 08:57, Robert J. Hansen wrote:
>> You can delete these values from your current gpg.conf.
>>
>> s2k-digest-algo SHA256 s2k-cipher-algo AES256 cert-digest-algo SHA256
>> digest-algo SHA256
>>
>> Reason 1: Those values are used when options like 
>> 'personal-cipher-preferences', 'personal-digest-preferences' and 
>> 'personal-compress-preferences' are not given! But here, you already 
>> gave those three options already.
> 
> This isn't quite true.  personal-*-preferences won't affect s2k
> preferences or cert-digest-algo.  However, you're absolutely correct to
> advise against using cipher-algo or digest-algo.
> 
> (I *think* I'm right on this, but I can't promise I am, nor have I done
> a quick empirical test to check.  Take the preceding with a grain of salt.)
> 
>> Reason 2: Those values are known to break the OpenPGP standard.
> 
> Some of them are serious problems (digest-algo and cipher-algo).  The
> others are mostly safe.  s2k is only used by the user on their own
> machine, so there isn't much concern about interoperability with other
> OpenPGP clients.
> 
>> That's the same OpenPGP does. OpenPGP standard is just a reference 
>> model. Anyone can modify it and include unique features. But it's
>> not necessary to be those 'unique features' to be included in every 
>> OpenPGP implemented products. But when it comes to communicating
>> each other, there comes the problem if there's no common standard
>> rule.
> 
> Those who are concerned about OpenPGP conformance should add "openpgp"
> to the end of their gpg.conf file.  :)
> 
>> But at the same time, these settings might be incompatible with
>> older softwares.
> 
> Nope!  The preference list you gave will not cause troubles with any
> OpenPGP application, not even old PGP 5.x.  If there's no preference
> list on your recipient's public key (which does happen, from time to
> time), OpenPGP will gracefully degrade to use SHA-1 and 3DES.  SHA-1 is
> getting pretty long in the tooth, but 3DES is still solid as a rock.
> 
> My usual joke about 3DES -- which, like most of my jokes, is a way of
> telling truth with a laugh -- is that 3DES has all the beauty of a
> Soviet workers' housing bloc, all the aesthetics of the Socialist
> Realism school of art, and yet has been turning brilliant young
> cryptanalysts into burned-out alcoholic wrecks for the last 35 years.  :)
> 
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQIcBAEBCgAGBQJUenyNAAoJEJyRZAJNoXmulPYP/jWu0Om3Jt2FIZwWc65cPlbz
odJrDeQvzwJ0b03xtJy5B1e42cIRfSZVNkLpUP8ajxdbH/ISgraXtEmhZwyZwIfg
Rnx986Mnrb5kT9eY1JbBLYVm20Exq9nwkrvoMjbWnJESJxbqcNYKYcAIjZkRAHqd
ow3um/OGlY/HS+t/0Q92d6TRfaLkJxhmIw6EqwutFuQ44MUd3no9I5J0sn1CnGXG
0twX2h6IXAlzPEBJz2eMSjpmwEDVLHzzMw7UixVc8jOjlf+uk1XboZZgxiaEXZAq
ydycXICFI8rVtQQmKDgVuBQvFLUYC4ZInKFDM/qTEgi4r1bs3XGzoBk2y8BJxep+
q0lDeNvXDyZXRXms0Ga0aWUaJ29pfS95/nKqaF7/ndFNOVNS3/oXgAuS2uRs9s5l
BRp2wWb7S82H5ueLffhNAvHTgq2vffDglNrm+TrAHyUw48H0Fsx0TsVjlgotAx+x
5yGcf5MzAxlpEa4FpcUZN1xjto3sh5/Q57bCFAsYoVbbkuyTsvPBD1FUzwY8SlC7
R1M7c0xLhO96NsKEQVdz7HQW0yE2jF4ZBsBcSUc7wzIvCEIKdtO6U9mQYOhJ9Fx1
HjUTRnLlPv3h+/D4GR4CQjER6LF5xGjXMaSWl6v83uUsVTL4tSKo/ZbgLszSh3TD
rGhlmAvGGfwFpL8zf0nS
=HQCO
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list