[Tails-dev] Please review'n'merge feature/stronger-gnupg-cip…

Delete this message

Reply to this message
Autor: intrigeri
Data:  
A: tails-dev
Assumpte: [Tails-dev] Please review'n'merge feature/stronger-gnupg-cipher
Hi,

candidate for 0.21, no ticket, merged into experimental, only one
commit:

commit 04e39f004930fe34b125b02ba68537d16ebd281e
Author: Tails developers <amnesia@???>
Date: Fri Oct 4 10:30:08 2013 +0000

    Prefer stronger ciphers when encrypting data with GnuPG.


    Quoting gpg(1):


      This allows the user to safely override the algorithm chosen by the recipient
      key preferences, as GPG will only select an algorithm that is usable by all
      recipients. The most highly ranked cipher in this list is also used for
      the --symmetric encryption command.


    Use the same set of ciphers as we already use for newly created keys'
    preferences (default-preference-list), that is AES256,AES192,AES,CAST5.


    This should improve confidentiality in particular for symmetrically encrypted
    data, that until now is encrypted with CAST5 only.


Cheers,
--
intrigeri
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc