[Pkg-gnupg-maint] Bug#644385: gnupg: Please default to 4096 bit keys for RSA
Adrian Bunk
bunk at stusta.de
Wed Oct 5 11:57:35 UTC 2011
Package: gnupg
Version: 1.4.11-3
Severity: wishlist
<-- snip -->
$ gpg --gen-key
gpg (GnuPG) 1.4.11; Copyright (C) 2010 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Please select what kind of key you want:
(1) RSA and RSA (default)
(2) DSA and Elgamal
(3) DSA (sign only)
(4) RSA (sign only)
Your selection?
RSA keys may be between 1024 and 4096 bits long.
What keysize do you want? (2048)
<-- snip -->
Looking at announcements like
http://lists.debian.org/debian-devel-announce/2010/09/msg00003.html
https://lkml.org/lkml/2011/9/30/421
it would make sense to change the default RSA keysize to 4096.
Other keysizes would still be possible for people having a reason for
them, but people going with the defaults would get a stronger key.
More information about the Pkg-gnupg-maint
mailing list