projects / gnupg2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b41436f) | patch
gpgsm: default to 3072-bit keys.
authorDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Thu, 7 Sep 2017 22:39:37 +0000 (18:39 -0400)
committerDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Sun, 30 Sep 2018 16:40:42 +0000 (17:40 +0100)
commit667170b9b40307992bb000aa1e8e88babf1bb844
tree673ffb6871c928dc684b36f66d75a29e6881c1bctree | snapshot
parentb41436fe068b59cd52a4d89f1c39d33108a0e0e0commit | diff
gpgsm: default to 3072-bit keys.

* doc/gpgsm.texi, doc/howto-create-a-server-cert.texi: : update
default to 3072 bits.
* sm/certreqgen-ui.c (gpgsm_gencertreq_tty): update default to
3072 bits.
* sm/certreqgen.c (proc_parameters): update default to 3072 bits.
* sm/gpgsm.c (main): print correct default_pubkey_algo.

--

3072-bit RSA is widely considered to be 128-bit-equivalent security.
This is a sensible default in 2017.

Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
(cherry picked from commit 7955262151a5c755814dd23414e6804f79125355)

Gbp-Pq: Topic from-master
Gbp-Pq: Name gpgsm-default-to-3072-bit-keys.patch
doc/gpgsm.texi diff | blob | history
doc/howto-create-a-server-cert.texi diff | blob | history
sm/certreqgen-ui.c diff | blob | history
sm/certreqgen.c diff | blob | history
sm/gpgsm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.