Bug#317411: "type 4" GnuPG (gpg) key not clear

To: weasel@debian.org
Cc: 317411@bugs.debian.org
Subject: Bug#317411: "type 4" GnuPG (gpg) key not clear
From: Andreas Barth <aba@not.so.argh.org>
Date: Thu, 22 Dec 2005 10:16:58 +0100
Message-id: <[🔎] 20051222091658.GT25804@mails.so.argh.org>
Reply-to: Andreas Barth <aba@not.so.argh.org>, 317411@bugs.debian.org
In-reply-to: <20050708100626.GB29949@deprecation.cyrius.com>
References: <20050708100626.GB29949@deprecation.cyrius.com>

Hi Peter,

can you please write me some stanca for the developers reference (or hint
me to the right section on nm.d.o).


Thanks,
Andi


* Martin Michlmayr (tbm@cyrius.com) [050708 13:24]:
> Package: developers-reference
> Severtiy: minor
> 
> Obviously, the paragraph talking about "type 4" GPG keys is not clear.
> Please explain what "type 4" means exactly.
> 
> 
> 
> ----- Forwarded message from Erick Vresnev Castellanos Hernández <vresnev@gmail.com> -----
> 
> From: Erick Vresnev Castellanos Hernández <vresnev@gmail.com>
> Reply-To: Erick Vresnev Castellanos Hernández <vresnev@gmail.com>
> Subject: Preferred way to genereate a gpg key?
> Date: Fri, 24 Jun 2005 18:39:43 -0500
> To: debian-devel@lists.debian.org
> 
> While I was reading Developer's Reference [1], in the part about gpg
> keys, it says:
> 
> "You need a type 4 key for use in Debian Development. Your key length [...]"
> 
> I supposed that it refers about the "gpg --gen-key" command, and the
> options that result from executing it. Also I remember that, *in the
> past*, it was a "4" option which was something about ElGamal sign and
> encryption, or something like that. But now, in the Sarge's version of
> gpg, there is only option 1,2, and 5.
> 
> So, I ask: now what is the preferred way to generete a gpg key to
> become a debian developer? The "4" expression, and my interpretation,
> in that paragraph is it correct?
> 
> Just want to know. And if it is a bug, I hope somebody could change it
> to avoid confusion.
> 
> Thanks.
> 
> Erick.
> 
> 
> 
> [1] http://www.debian.org/doc/packaging-manuals/developers-reference/ch-new-maintainer.en.html
> 
> 
> -- 
> "Libertad es aún la idea más radical de todas."
> ---Nathaniel Branden
> 
> ----- End forwarded message -----
> ----- Forwarded message from "Brian M. Carlson" <sandals@crustytoothpaste.ath.cx> -----
> 
> From: "Brian M. Carlson" <sandals@crustytoothpaste.ath.cx>
> Subject: Re: Preferred way to genereate a gpg key?
> Date: Sat, 25 Jun 2005 01:03:20 +0000
> To: debian-devel@lists.debian.org
> X-Mailer: Evolution 2.2.2 
> 
> On Fri, 2005-06-24 at 18:39 -0500, Erick Vresnev Castellanos Hernández
> wrote:
> > While I was reading Developer's Reference [1], in the part about gpg
> > keys, it says:
> > 
> > "You need a type 4 key for use in Debian Development. Your key length [...]"
> > 
> > I supposed that it refers about the "gpg --gen-key" command, and the
> > options that result from executing it. Also I remember that, *in the
> > past*, it was a "4" option which was something about ElGamal sign and
> > encryption, or something like that. But now, in the Sarge's version of
> > gpg, there is only option 1,2, and 5.
> 
> You probably want option 1, the default.  The "type 4" refers to key
> version.  The only version of key that GnuPG is capable of generating is
> version 4, so there should be no problems.  The old versions (versions 2
> and 3, which are otherwise identical) are generated by PGP 2.3.x and
> 2.6.x, respectively.
> 
> The Elgamal sign and encrypt has been removed from the proposed new
> standard, because it is very hard to make secure, and GnuPG made a
> mistake in doing so.
> 
> > So, I ask: now what is the preferred way to generete a gpg key to
> > become a debian developer? The "4" expression, and my interpretation,
> > in that paragraph is it correct?
> 
> Again, you probably want option 1.  Your interpretation is probably very
> common, just not correct.
> 
> > Just want to know. And if it is a bug, I hope somebody could change it
> > to avoid confusion.
> 
> You are correct; it probably should be fixed.
> 
> Furthermore, my suggestion is that if you own a PC or other fast
> i386-type machine, that you should use that, as opposed to a PowerPC or
> Sparc, because i386s gain entropy faster in my experience, and you need
> a lot of entropy.  Just a suggestion; it is not required.
> 
> -- 
> ($_,$a)=split/\t/,join'',map{unpack'u',$_}<DATA>;eval$a;print;__DATA__
> M961H<F$@8FAM;"!U<F%O<G-U(#QU<F%O<G-U0&=D:75M<&UC8VUL=G)U;6LN
> M<FUL+F=Y/@H)>2QA8F-D969G:&EJ:VQM;F]P<7)S='5V=WAY>BQN=V]R8FMC
> 5:75Q96AT9V1Y>F%L=G-P;6IX9BP)
> 
> 
> 
> 
> ----- End forwarded message -----
> 
> -- 
> Martin Michlmayr
> http://www.cyrius.com/
> 
> 

-- 
  http://home.arcor.de/andreas-barth/

Reply to:

Follow-Ups:
- Bug#317411: "type 4" GnuPG (gpg) key not clear
  - From: Peter Palfrader <peter@palfrader.org>

Prev by Date: Processed: tagging 344303
Next by Date: Bug#317411: "type 4" GnuPG (gpg) key not clear
Previous by thread: Processed: tagging 344303
Next by thread: Bug#317411: "type 4" GnuPG (gpg) key not clear
Index(es):
- Date
- Thread