Mailing List Archive

On Sun, 9 Jan 2022 10:25, Robert Flosbach said:

> For future reference and people having the same issue: gpg2.3
> introduced a new packet type 20 which provides authenticated
> encryption with associated data (AEAD) [1]. A key generated with
> gpg2.3 supports this encryption type and encryption in Windows (using
> the current Gpg4win 4.0.0) defaults to AEAD for a key generated with

There are two ways to change this: the first is to change the
preferences on your key (using 2.3's --edit-key) and the second is to
put

--8<---------------cut here---------------start------------->8---
ignore-invalid-option personal-aead-preferences
personal-aead-preferences none
--8<---------------cut here---------------end--------------->8---

into gpg.conf . From the man page:

--personal-aead-preferences string

Set the list of personal AEAD preferences to string. Use gpg
--version to get a list of available algorithms, and use none to set
no preference at all. This allows the user to safely override the
algorithm chosen by the recipient key preferences, as GPG will only
select an algorithm that is usable by all recipients. The most
highly ranked cipher in this list is also used for the --symmetric
encryption command.

(the ignore-invalid-option line allows to use the same gpg.conf
also with gpg 2.2)


Shalom-Salam,

Werner


--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.