Security doubts on 3DES default

Werner Koch wk at gnupg.org
Wed Mar 15 12:13:18 CET 2017


On Tue, 14 Mar 2017 21:54, rjh at sixdemonbag.org said:

> So long as you understand GnuPG will not make any changes that break RFC
> conformance... and dropping SHA1/3DES breaks RFC conformance.

Well, it is possible to use

  --weak-digest SHA1 --disable-cipher-algo 3DES

with gpg.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: </pipermail/attachments/20170315/d909e44b/attachment.sig>


More information about the Gnupg-users mailing list