diff options
| author | Will Sargent <wsargent@users.noreply.github.com> | 2016-09-24 10:29:56 -0700 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2016-09-24 10:29:56 -0700 |
| commit | 8515aaf8395b935b8695ddd67e998011001268aa (patch) | |
| tree | ca5155afff4a4c21ac0f38d00ac955b491d91394 /README.md | |
| parent | Merge pull request #20 from wsargent/patch-1 (diff) | |
| download | YubiKey-Guide-8515aaf8395b935b8695ddd67e998011001268aa.tar.gz | |
Use AES256 for private key password encryption
Adds
```
s2k-cipher-algo AES256
```
to the GPG configuration, per https://pthree.org/2015/11/19/your-gnupg-private-key/
> --s2k-cipher-algo name
> Use name as the cipher algorithm used to protect secret keys. The default cipher is CAST5. This cipher is also used for symmetric encryption with a passphrase if --personal-cipher-preferences and --cipher-algo is not given.
https://www.gnupg.org/documentation/manuals/gnupg-2.0/OpenPGP-Options.html#index-s2k_002dcipher_002dalgo
Diffstat (limited to 'README.md')
| -rw-r--r-- | README.md | 2 |
1 files changed, 2 insertions, 0 deletions
@@ -159,6 +159,7 @@ Paste the following [text](https://stackoverflow.com/questions/2500436/how-does- default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed cert-digest-algo SHA512 s2k-digest-algo SHA512 + s2k-cipher-algo AES256 charset utf-8 fixed-list-mode no-comments @@ -939,6 +940,7 @@ Paste the following text into a terminal window to create a [recommended](https: personal-digest-preferences SHA512 SHA384 SHA256 SHA224 default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed cert-digest-algo SHA512 + s2k-cipher-algo AES256 s2k-digest-algo SHA512 charset utf-8 fixed-list-mode |