Which version of GnuPG to use?

Damien Goutte-Gattat dgouttegattat at incenp.org
Mon Sep 16 14:41:00 CEST 2019


On Mon, Sep 16, 2019 at 11:29:19AM +0200, Daniel Bossert wrote:
>I need recommendations:
>- Which version of software shall I install?

The latest version available for your system, which should in any case 
be a version from the 2.2 branch. (If your system is Windows, that would 
be Gpg4Win 3.1.10, which provides GnuPG 2.2.17.)

You should *not* use GnuPG 1.4.x unless you have some very specific 
needs (such as working on a "exotic" system or having to interoperate 
with PGP versions from the mid-1990s), and you should *not* use any 
version from the 2.0 or 2.1 branch which are not supported anymore.

>- Create key via cli-commands or is Windows-Version ok?

This doesn't matter, really. You may use gnupg directly on the command 
line if you're familiar with it, but you don't have to.

>- Which keys shall I take (there was an article not to encrypt/sign 
>with El-Gamal)?

The usual recommandation is to stick to the default setting proposed by 
GnuPG (which currently and if I remember correctly is to generate a 
RSA-3072 master key for certifying and signing and a RSA-3072 encryption 

Note that modern versions of GnuPG do not ask you anymore to specify the 
type and/or size of key you want unless you explicitly request it.

- Damien
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20190916/f8bdda94/attachment.sig>

More information about the Gnupg-users mailing list