projects / gnupg2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2d8e755) | patch
gpgsm: default to 3072-bit keys.
authorDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Thu, 7 Sep 2017 22:39:37 +0000 (18:39 -0400)
committerDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Sun, 18 Nov 2018 22:38:30 +0000 (22:38 +0000)
commit3ba636dc856cf12c831a95245f6b7a97c11928f3
tree7b814910c9c671b09d9ce0f2b5892630a289282dtree | snapshot
parent2d8e7556d56595ac18e9e24023bd7e08c1aedbf1commit | diff
gpgsm: default to 3072-bit keys.

* doc/gpgsm.texi, doc/howto-create-a-server-cert.texi: : update
default to 3072 bits.
* sm/certreqgen-ui.c (gpgsm_gencertreq_tty): update default to
3072 bits.
* sm/certreqgen.c (proc_parameters): update default to 3072 bits.
* sm/gpgsm.c (main): print correct default_pubkey_algo.

--

3072-bit RSA is widely considered to be 128-bit-equivalent security.
This is a sensible default in 2017.

Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
(cherry picked from commit 7955262151a5c755814dd23414e6804f79125355)

Gbp-Pq: Topic from-master
Gbp-Pq: Name gpgsm-default-to-3072-bit-keys.patch
doc/gpgsm.texi diff | blob | history
doc/howto-create-a-server-cert.texi diff | blob | history
sm/certreqgen-ui.c diff | blob | history
sm/certreqgen.c diff | blob | history
sm/gpgsm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.