Andreas Stieger
4a38996a40
- Use stronger defaults for new users, using SHA-2 digest family for certificates and message signatures - FATE#323084 adding gnupg-2.1.19-stronger-defaults.patch OBS-URL: https://build.opensuse.org/request/show/479376 OBS-URL: https://build.opensuse.org/package/show/Base:System/gpg2?expand=0&rev=166
27 lines
797 B
Diff
27 lines
797 B
Diff
From: Andreas Stieger <astieger@suse.com>
|
|
Date: Tue, 14 Mar 2017 20:43:20 +0000
|
|
Subject; FATE#323084: Stronger GnuPG defaults
|
|
References: FATE#323084
|
|
Upstream: no
|
|
|
|
Index: gnupg-2.1.19/g10/options.skel
|
|
===================================================================
|
|
--- gnupg-2.1.19.orig/g10/options.skel
|
|
+++ gnupg-2.1.19/g10/options.skel
|
|
@@ -137,3 +137,15 @@
|
|
# Uncomment the following option to get rid of the copyright notice
|
|
|
|
#no-greeting
|
|
+
|
|
+# SUSE recommended output options
|
|
+with-fingerprint
|
|
+keyid-format 0xlong
|
|
+no-emit-version
|
|
+
|
|
+# SUSE recommends SHA-2 family of hashes for all
|
|
+personal-digest-preferences SHA512 SHA384 SHA256 SHA224
|
|
+default-preference-list SHA512 SHA384 SHA256 AES256 AES192 AES CAST5 BZIP2 ZLIB ZIP Uncompressed
|
|
+cert-digest-algo SHA512
|
|
+digest-algo SHA512
|
|
+
|