Faramir wrote: > Just a question, and I don't have any intention about doing it, but, > is there a way to disable the usage of 3DES in GnuPG, when encrypting?
Sure, the source is available -- the result just won't be a valid OpenPGP
implementation any longer.
Now for my "Just a Question": Why on earth would you want to?
To quote a friend of mine discussing 3DES:
> It's perfectly safe. In fact, 3DES is probably the most trustworthy
> algorithm on this list. A few years ago when Schneier was asked for his
> pick for "most trusted encryption algorithm," he said something like
> "3DES. Nothing else even comes close." Sure, use AES for new crypto
> software, but if you absolutely _must_ have the most overdesigned,
> overbuilt thing out there...
>
> It's been subjected to withering cryptanalysis for coming up on 30 years
> now. It's one of the standard ciphers graduate students are exposed to
> in cryptography/cryptanalysis courses. It has turned a generation of
> brilliant young graduate students into burned out alcoholic wrecks. I
> have participated in bar crawls after getting beaten by 3DES.
>
> It is big, clumsy, ungainly and slow. It has all the aesthetic values
> of the Soviet Realism school of art, and processes data about as fast as
> a snail coming off a three-day scopolamine trip.
>
> And it is still beating up every cryptanalyst out there and stealing
> their lunch money.
--
John P. Clizbe Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or
mailto:pgp-public-k...@gingerbear.net?subject=help
Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
