GnuPG should refuse to encrypt using 64-bit block ciphers by default
Open, HighPublic


Over on gnupg-devel, Robert J. Hansen writes:

GnuPG refuse to use 64-bit block ciphers for encryption unless an option was set (--allow-old-ciphers, perhaps). Leave the algorithms in there for RFC conformance, let them
decrypt without a warning, but require an option to be set for using them.

I also think this is a good idea.

dkg created this task.Sep 19 2017, 10:52 PM
dkg updated the task description. (Show Details)
werner added a subscriber: werner.

But not for 2.2

werner triaged this task as High priority.Sep 19 2017, 11:24 PM