diff --git a/web/download/index.org b/web/download/index.org
index c915608..409b945 100644
--- a/web/download/index.org
+++ b/web/download/index.org
@@ -1,148 +1,150 @@
#+TITLE: GnuPG - Download
#+STARTUP: showall align
#+SETUPFILE: "../share/setup.inc"
#+GPGWEB-NEED-SWDB
#+OPTIONS: ^:{}
#+macro: check_sig_note GnuPG distributions are signed. It is wise and more secure to check out for their [[integrity_check.org][@@html:@@integrity@@html:@@]].
#+macro: ftpopen @@html:download@@
#+macro: ftpcloseS @@html:">sig@@
* Download
#+index: GnuPG!download
Note that you may also download the GNU Privacy Guard from a mirror
site close to you. See our [[file:mirrors.org][list of mirrors]]. The table below
provides links to the location of the files on the primary server
only.
#+BEGIN_HTML
#+END_HTML
** Source code releases
These are the canonical release forms of GnuPG. To use them you
need to build the binary version from the provided source code.
For Unix systems this is the standard way of installing software.
For GNU/Linux distributions are commonly used (e.g. Debian, Fedora,
RedHat, or Ubuntu) which may already come with a directly
installable packages. However, these version may be older so that
building from the source is often also a good choice. Some
knowledge on how to compile and install software is required.
The table lists the different GnuPG packages, followed by required
libraries, required tools, optional software, and legacy versions
of GnuPG. For end-of-life dates see further down.
| Name | Version | Date | Size | Tarball | Signature |
|-----------------+------------------------+-------------------------+-------------------------+--------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------|
| | | | | | |
| [[../software/index.org][GnuPG]] | {{{gnupg24_ver}}} | {{{gnupg24_date}}} | {{{gnupg24_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gnupg/gnupg-{{{gnupg24_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gnupg/gnupg-{{{gnupg24_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/index.org][GnuPG]] (LTS) | {{{gnupg22_ver}}} | {{{gnupg22_date}}} | {{{gnupg22_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gnupg/gnupg-{{{gnupg22_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gnupg/gnupg-{{{gnupg22_ver}}}.tar.bz2.sig{{{ftpclose}}} |
|-----------------+------------------------+-------------------------+-------------------------+--------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------|
| [[../software/libgpg-error/index.org][Libgpg-error]] | {{{libgpg_error_ver}}} | {{{libgpg_error_date}}} | {{{libgpg_error_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libgpg-error/libgpg-error-{{{libgpg_error_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libgpg-error/libgpg-error-{{{libgpg_error_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/libgcrypt/index.org][Libgcrypt]] | {{{libgcrypt_ver}}} | {{{libgcrypt_date}}} | {{{libgcrypt_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libgcrypt/libgcrypt-{{{libgcrypt_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libgcrypt/libgcrypt-{{{libgcrypt_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/libgcrypt/index.org][Libgcrypt]] (LTS) | {{{libgcrypt18_ver}}} | {{{libgcrypt18_date}}} | {{{libgcrypt18_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libgcrypt/libgcrypt-{{{libgcrypt18_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libgcrypt/libgcrypt-{{{libgcrypt18_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/libksba/index.org][Libksba]] | {{{libksba_ver}}} | {{{libksba_date}}} | {{{libksba_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libksba/libksba-{{{libksba_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libksba/libksba-{{{libksba_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/libassuan/index.org][Libassuan]] | {{{libassuan_ver}}} | {{{libassuan_date}}} | {{{libassuan_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libassuan/libassuan-{{{libassuan_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/libassuan/libassuan-{{{libassuan_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/ntbtls/index.org][ntbTLS]] | {{{ntbtls_ver}}} | {{{ntbtls_date}}} | {{{ntbtls_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/ntbtls/ntbtls-{{{ntbtls_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/ntbtls/ntbtls-{{{ntbtls_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/npth/index.org][nPth]] | {{{npth_ver}}} | {{{npth_date}}} | {{{npth_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/npth/npth-{{{npth_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/npth/npth-{{{npth_ver}}}.tar.bz2.sig{{{ftpclose}}} |
|-----------------+------------------------+-------------------------+-------------------------+--------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------|
| Pinentry | {{{pinentry_ver}}} | {{{pinentry_date}}} | {{{pinentry_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/pinentry/pinentry-{{{pinentry_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/pinentry/pinentry-{{{pinentry_ver}}}.tar.bz2.sig{{{ftpclose}}} |
|-----------------+------------------------+-------------------------+-------------------------+--------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------|
| [[../software/gpgme/index.org][GPGME]] | {{{gpgme_ver}}} | {{{gpgme_date}}} | {{{gpgme_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gpgme/gpgme-{{{gpgme_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gpgme/gpgme-{{{gpgme_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/scute/index.org][Scute]] | {{{scute_ver}}} | {{{scute_date}}} | {{{scute_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/scute/scute-{{{scute_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/scute/scute-{{{scute_ver}}}.tar.bz2.sig{{{ftpclose}}} |
| [[../software/gpa/index.org][GPA]] | {{{gpa_ver}}} | {{{gpa_date}}} | {{{gpa_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gpa/gpa-{{{gpa_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gpa/gpa-{{{gpa_ver}}}.tar.bz2.sig{{{ftpclose}}} |
|-----------------+------------------------+-------------------------+-------------------------+--------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------|
| GnuPG 1.4 | {{{gnupg1_ver}}} | {{{gnupg1_date}}} | {{{gnupg1_size}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gnupg/gnupg-{{{gnupg1_ver}}}.tar.bz2{{{ftpclose}}} | {{{ftpopen}}}{{{ftp_loc_base}}}/gnupg/gnupg-{{{gnupg1_ver}}}.tar.bz2.sig{{{ftpclose}}} |
|-----------------+------------------------+-------------------------+-------------------------+--------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------|
{{{check_sig_note}}}
Remarks:
- /Pinentry/ is a collection of passphrase entry dialogs which is
required for almost all usages of GnuPG.
- /GPGME/ is the standard library to access GnuPG functions from
programming languages.
- /Scute/ is a PKCS#11 provider on top of GnuPG.
- /GPA/ is a graphical frontend to GnuPG.
- /GnuPG 1.4/ is the old, single binary version which still support
the unsafe PGP-2 keys. This branch has no dependencies on the
above listed libraries or the Pinentry. However, it lacks many
modern features and will receive only important updates.
** GnuPG binary releases
:PROPERTIES:
:CUSTOM_ID: binary
:END:
#+index: Binaries!download
In general we do not distribute binary releases but leave that to
the common Linux distributions. However, for some operating
systems we list pointers to readily installable releases. We
cannot guarantee that the versions offered there are current. Note
also that some of them apply security patches on top of the
standard versions but keep the original version number.
| OS | Where | Description |
|---------+--------------------+------------------------------------------|
| | <18> | |
| Windows | [[https://gpg4win.org/download.html][Gpg4win]] | Full featured Windows version of /GnuPG/ |
| | {{{ftpopen}}}{{{ftp_loc_base}}}/binary/gnupg-w32-{{{gnupg24_w32_ver}}}.exe{{{ftpclose}}} {{{ftpopen}}}{{{ftp_loc_base}}}/binary/gnupg-w32-{{{gnupg24_w32_ver}}}.exe.sig{{{ftpcloseS}}} | Simple installer for the current /GnuPG/ |
| | {{{ftpopen}}}{{{ftp_loc_base}}}/binary/gnupg-w32cli-{{{gnupg1_w32cli_ver}}}.exe{{{ftpclose}}} {{{ftpopen}}}{{{ftp_loc_base}}}/binary/gnupg-w32cli-{{{gnupg1_w32cli_ver}}}.exe.sig{{{ftpcloseS}}} | Simple installer for /GnuPG 1.4/ |
| OS X | [[https://gpgtools.org][Mac GPG]] | Installer from the gpgtools project |
| | [[https://sourceforge.net/p/gpgosx/docu/Download/][GnuPG for OS X]] | Installer for /GnuPG/ |
| Debian | [[https://www.debian.org][Debian site]] | GnuPG is part of Debian |
| RPM | [[http://rpmfind.net/][rpmfind]] | RPM packages for different OS |
| Android | [[https://guardianproject.info/code/gnupg/][Guardian project]] | Provides a GnuPG framework |
| VMS | [[http://www.antinode.info/dec/sw/gnupg.html][antinode.info]] | A port of GnuPG 1.4 to OpenVMS |
| RISC OS | [[http://www.sbellon.de/gnupg.html][home page]] | A port of GnuPG to RISC OS |
|---------+--------------------+------------------------------------------|
** End-of-life announcements
:PROPERTIES:
:CUSTOM_ID: end-of-life
:END:
We announce the end-of-life date for a current stable version at
the time a new stable version is released. We maintain old
branches for at least two years. For GnuPG 2.2 we consider 2.1.0
as the birth of this new stable branch. For most other packages we
don't maintain branches and thus there is no end-of-life; always
use the latest version.
| Package | Ver. | End-of-life | Birth |
|-----------+-------+----------------+------------|
| | | | |
| GnuPG | +1.0+ | 2002-09-07 | 1999-09-07 |
| | +1.2+ | 2005-01-01 | 2002-09-21 |
| | 1.4 | none (2) | 2004-12-16 |
| | +2.0+ | 2017-12-31 | 2006-11-11 |
| | 2.2 | 2024-12-31 (1) | 2014-11-06 |
| | 2.3 | tba | 2021-04-07 |
| Libgcrypt | +1.5+ | 2016-12-31 | 2011-06-29 |
| | +1.6+ | 2017-06-30 | 2013-12-16 |
| | +1.7+ | 2019-06-30 | 2016-04-15 |
| | 1.8 | 2024-12-31 (1) | 2017-07-18 |
| | 1.9 | 2024-03-31 | 2021-01-19 |
+ | | 1.10 | tba | 2022-02-01 |
+
- /(1)/: Long Term Support; eol date likely to be prolonged
- /(2)/: Legacy version; see remarks above.
- /tba/: To be announced.
# eof #
diff --git a/web/index.org b/web/index.org
index 874af9e..e668e72 100644
--- a/web/index.org
+++ b/web/index.org
@@ -1,200 +1,207 @@
#+TITLE: The GNU Privacy Guard
#+STARTUP: showall
#+SETUPFILE: "share/setup.inc"
#+GPGWEB-NEED-SWDB
* The GNU Privacy Guard
#+index: GnuPG
#+index: GPG
#+index: PGP
#+index: Gpg4win
GnuPG is a complete and free implementation of the OpenPGP standard as
defined by [[https://www.ietf.org/rfc/rfc4880.txt][RFC4880]] (also known as /PGP/). GnuPG allows you to encrypt and
sign your data and communications; it features a versatile key management
system, along with access modules for all kinds of public key
directories. GnuPG, also known as /GPG/, is a command line tool with
features for easy integration with other applications. A wealth of
[[file:software/frontends.html][frontend applications]] and [[file:software/libraries.html][libraries]] are available. GnuPG also
provides support for S/MIME and Secure Shell (ssh).
Since its introduction in 1997, GnuPG is [[https://www.gnu.org/philosophy/free-sw.html][Free Software]] (meaning that
it respects your freedom). It can be freely used, modified and
distributed under the terms of the [[https://www.gnu.org/copyleft/gpl.html][GNU General Public License]] .
The current version of GnuPG is {{{gnupg22_ver}}}. See the [[file:download/index.org][download]]
page for other maintained versions.
[[https://www.gpg4win.org][Gpg4win]] is a Windows version of GnuPG featuring a context menu tool, a
crypto manager, and an Outlook plugin to send and receive standard
PGP/MIME mails. The current version of Gpg4win is {{{gpg4win_ver}}}.
* Reconquer your privacy
#+begin_quote
Arguing that you don't care about the right to privacy
because you have nothing to hide is no different from
saying you don't care about free speech because you have
nothing to say. \ndash\nbsp{}Edward\nbsp{}Snowden
#+end_quote
Using encryption helps to protect your privacy and the privacy of the
people you communicate with. Encryption makes life difficult for bulk
surveillance systems. GnuPG is one of the tools that Snowden used to
uncover the secrets of the NSA.
Please visit the [[https://emailselfdefense.fsf.org][Email Self-Defense]] site to learn how and why you
should use GnuPG for your electronic communication.
* News
#+index: News
The latest blog entries:
#+begin_html
#+end_html
The latest release news:\\
([[file:news.org][all news]])
# For those of you who like reading world’s news with an RSS reader,
# GnuPG's latest news are available as [[http://feedvalidator.org/check.cgi?url%3Dhttps://www.gnupg.org/news.en.rss][RSS 2.0 compliant]] feed. Just
# point or paste the [[news.en.rss][RSS file]] into your aggregator.
+** Libgcrypt 1.10 is the new stable branch (2022-03-28)
+
+Although we will keep on maintaining the 1.8 branch, the new stable
+branch is now 1.10. Version 1.10.1 comes with a lot of performance
+improvements and a few other new features. It provides full API and
+ABI compatibility to previous versions. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2022q1/000471.html][more]]}
+
** GnuPG 2.3.3 released (2021-10-12)
GnuPG 2.3.3 has been released. This version fixes a bug we introduced
in 2.3.2 as well as a problem with Let's Encrypt certificates which
inhibited the use of keyservers since October. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2021q4/000466.html][more]]}
** GnuPG 2.3.2 released (2021-08-24)
We have done another release in the GnuPG 2.3 series. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2021q3/000462.html][more]]}
** GnuPG 2.3.1 released (2021-04-20)
We have done the second release in the GnuPG 2.3 series. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2021q2/000459.html][more]]}
** Libgcrypt 1.9.3 released (2021-02-19)
A new Libgcrypt version is available. {[[https://dev.gnupg.org/T5305][more]]}
** GnuPG 2.3.0 released (2021-04-07)
We are pleased to announce the availability of a new GnuPG release:
version 2.3.0. This release marks the start of public testing
releases eventually leading to a new stable version 2.4.
See the [[https://lists.gnupg.org/pipermail/gnupg-announce/2021q2/000458.html][full announcement]]
** Libgcrypt 1.9.2 released (2021-02-17)
This version fixes a few build problems in 1.9.1. See
https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000457.html
** Libgcrypt 1.9.1 released (2021-01-29) :important:
Unfortunately we introduced a severe bug in Libgcrypt 1.9.0 released
10 days ago. If you already started to use version 1.9.0 please
*update immediately to 1.9.1*.
** Libgcrypt 1.9 is the new stable branch (2021-01-19)
Although we will keep on maintaining the 1.8 branch, the new stable
branch is now 1.9. Version 1.9.0 comes with a lot of performance
improvements and a few other new features. It provides full API and
ABI compatibility to previous versions. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000453.html][more]]}
** GnuPG 2.2.27 released (2021-01-11)
GnuPG version 2.2.27 has been released today. This is a maintenance
release with a few minor bug fixes. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000453.html][more]]}
** GnuPG 2.2.26 released (2020-12-21)
GnuPG version 2.2.26 has been released today. This is a maintenance
release with improved support for LDAP keyservers and Active
Directory. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2020q4/000451.html][more]]}
** GnuPG 2.2.25 released (2020-11-23)
GnuPG version 2.2.25 fixes a small regression in 2.2.24. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2020q4/000450.html][more]]}
** GnuPG 2.2.24 released (2020-11-17)
GnuPG version 2.2.24 has been released today. This is a maintenance
release fixing some longstanding bugs. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2020q4/000449.html][more]]}
** GnuPG 2.2.23 released (2020-09-03) :important:
GnuPG version 2.2.23 has been released today. This version fixes a
*critical security bug* in 2.2.21 and 2.2.22 ({{{CVE(2020-25125)}}}).
Please follow the instructions from the [[https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000448.html][announcement mail]] and update
affected installations. See also our bug entry [[https://dev.gnupg.org/T5050][#5050]].
** GnuPG 2.2.22 released (2020-08-27)
[Note: Do not use this release - use 2.2.23 instead.]
GnuPG version 2.2.22 has been released today. This is a maintenance
release with a some minor changes. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000447.html][more]]}
** GnuPG 2.2.21 released (2020-07-09)
[Note: Do not use this release - use 2.2.23 instead.]
After the release of GnuPG [[https://lists.gnupg.org/pipermail/gnupg-announce/2020q1/000444.html][2.2.20]] back in March it is now the time to
get collected fixes from the last months out: GnuPG version 2.2.21 has
been released today. This is a maintenance release with a some minor
changes. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000446.html][more]]}
** Libgcrypt 1.8.6 released (2020-07-06)
Nearly a year passed since the last release and so the time is ripe
for new maintenance release: [[file:software/libgcrypt/index.org][Libgcrypt]] version 1.8.6 is now
available. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000445.html][more]]}
** Gpg4win fully approved for EU RESTRICTED.
After about a year of tweaking details of the approval, Gpg4win and
GnuPG are now approved for EU RESTRICTED communication (VS-NfD). This
approvals covers the protocols S/MIME and OpenPGP (public-key and
symmetric-only) with hard- and soft-tokens. Our commercial branch
[[https://gnupg.com][GnuPG.com]] released a [[https://gnupg.com/20200107-freigabe-vs-nfd.html][press notice]] (in German) today.
** GnuPG 2.2.19 released (2019-12-07)
We are pleased to announce the availability of GnuPG version 2.2.19.
This version fixes a regression introduced with the last release.
{[[https://lists.gnupg.org/pipermail/gnupg-announce/2019q4/000443.html][more]]}
** GnuPG 2.2.18 released (2019-11-25)
We are pleased to announce the availability of GnuPG version 2.2.18.
This is maintenance release to fix a couple of minor bugs and provide
a few feature updates. This release also retires the use of SHA-1 key
signatures created since this year. {[[https://lists.gnupg.org/pipermail/gnupg-announce/2019q4/000442.html][more]]} ([[https://lists.gnupg.org/pipermail/gnupg-announce/2019q4/000443.html][see also]])
** Libgcrypt 1.8.5 released (2019-08-29)
If you care about local site-channel attacks on ECDSA you may want to
update to [[file:software/libgcrypt/index.org][Libgcrypt]] version 1.8.5. {{{CVE(CVE-2019-13627)}}} {[[https://lists.gnupg.org/pipermail/gnupg-announce/2019q3/000440.html][more]]}
* COMMENT
This is the publishing info used for the GnuPG pages
#+begin_src emacs-lisp
(progn
(setq gpgweb-root-dir (file-name-directory (buffer-file-name)))
(setq gpgweb-stage-dir (concat gpgweb-root-dir "../stage"))
(require 'gpgweb (concat gpgweb-root-dir "share/gpgweb.el"))
(setq org-publish-use-timestamps-flag nil)
(setq org-export-html-toplevel-hlevel 1)
(setq org-export-html-coding-system 'utf-8)
(gpgweb-setup-project))
#+end_src