Faramir wrote:
>   Just a question, and I don't have any intention about doing it, but,
> is there a way to disable the usage of 3DES in GnuPG, when encrypting?

Sure, the source is available -- the result just won't be a valid OpenPGP
implementation any longer.

Now for my "Just a Question": Why on earth would you want to?

To quote a friend of mine discussing 3DES:
> It's perfectly safe.  In fact, 3DES is probably the most trustworthy
> algorithm on this list.  A few years ago when Schneier was asked for his
> pick for "most trusted encryption algorithm," he said something like
> "3DES.  Nothing else even comes close."  Sure, use AES for new crypto
> software, but if you absolutely _must_ have the most overdesigned,
> overbuilt thing out there...
> 
> It's been subjected to withering cryptanalysis for coming up on 30 years
> now.  It's one of the standard ciphers graduate students are exposed to
> in cryptography/cryptanalysis courses.  It has turned a generation of
> brilliant young graduate students into burned out alcoholic wrecks.  I
> have participated in bar crawls after getting beaten by 3DES.
> 
> It is big, clumsy, ungainly and slow.  It has all the aesthetic values
> of the Soviet Realism school of art, and processes data about as fast as
> a snail coming off a three-day scopolamine trip.
> 
> And it is still beating up every cryptanalyst out there and stealing
> their lunch money.


-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-k...@gingerbear.net?subject=help

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"



Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to