projects / gnupg2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6e1b8f8) | patch
gpgsm: default to 3072-bit keys.
authorDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Thu, 7 Sep 2017 22:39:37 +0000 (18:39 -0400)
committerPeter Michael Green <plugwash@raspbian.org>
Wed, 25 Jul 2018 10:25:32 +0000 (11:25 +0100)
commit30092f7b7a3fe51d281d31ad27a8e85f11e70eb3
treea031d0db88f980e8652f21d59aff5c9021e37905tree | snapshot
parent6e1b8f8e6bbf731c4a571ca8bd0cfc19f0076959commit | diff
gpgsm: default to 3072-bit keys.

* doc/gpgsm.texi, doc/howto-create-a-server-cert.texi: : update
default to 3072 bits.
* sm/certreqgen-ui.c (gpgsm_gencertreq_tty): update default to
3072 bits.
* sm/certreqgen.c (proc_parameters): update default to 3072 bits.
* sm/gpgsm.c (main): print correct default_pubkey_algo.

--

3072-bit RSA is widely considered to be 128-bit-equivalent security.
This is a sensible default in 2017.

Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
(cherry picked from commit 7955262151a5c755814dd23414e6804f79125355)

Gbp-Pq: Topic from-master
Gbp-Pq: Name gpgsm-default-to-3072-bit-keys.patch
doc/gpgsm.texi diff | blob | history
doc/howto-create-a-server-cert.texi diff | blob | history
sm/certreqgen-ui.c diff | blob | history
sm/certreqgen.c diff | blob | history
sm/gpgsm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.