| blob | d9a18d09f9269ac936cc727cbe6d9b03eb3763f9 |
1 New features since 1.0.0
2 ------------------------
4 * The default symmetric cipher algorithm is now AES (aka
5 Rijndael). OpenPGP uses preferences to figure out the algorithm
6 to use, so this is only used if the recipient knows how to
7 handles AES.
9 * RSA keys can now be used (either old PGP 2 or new OpenPGP ones).
10 RSA key generation is not yet available.
12 * Unattended key generation.
14 * Faster and more robust random number generator under W32.
16 * Encryption is now much faster: About 2 times for 1k bit keys
17 and 8 times for 4k keys.
19 * New encryption keys are generated in a way which allows a much
20 faster decryption.
22 * GnuPG knows what the primary user ID is.
24 * Large File Support (LFS) is working.
26 * Ability to run gpg as a full controlled inferior process to speed up
27 mass verification of signatures.
29 * Rewritten key selection code so that GnuPG can better cope with
30 multiple subkeys, expiration dates and so on. The drawback is that it
31 is slower.
33 * New utility gpgv which is a stripped down version of gpg to
34 be used to verify signatures against a list of trusted keys.
36 * New command --export-secret-subkeys which outputs the
37 the _primary_ key with it's secret parts deleted. This is
38 useful for automated decryption/signature creation as it
39 allows to keep the real secret primary key offline and
40 thereby protecting the key certificates and allowing to
41 create revocations for the subkeys. See the FAQ for a
42 procedure to install such secret keys.
44 * New options --show-session-key and --override-session-key
45 to help the British folks to somewhat minimize the danger
46 of this Orwellian RIP bill.
48 * New option --no-auto-key-retrieve to disable retrieving of a
49 missing public key from a keyserver, even when a keyserver has
50 been configured. Useful for dial-up connections.
52 * HTTP proxy support for keyservers.
54 * Keyserver support is how also available for W32 platforms (MS
55 Windows 95, 98, 2000, NT, ME).
57 * Experimental gpg-agent support to get the passphrase from a
58 daemon which can pop up a query window.
61 rfc2440bis support (PGP 6.5.8 does also handle them)
62 -------------------
64 * MDC enhanced encryption is now used with the AES and Twofish
65 algorithms to detect manipulated messages.
67 * The user is now asked for the reason of a revocation.
70 Translations:
71 ------------
73 * Enhanced UTF-8 support
75 * New translations: Danish, Estonian, Indonesian, Portuguese and
76 Turkish.
78 Serious bug fixes:
79 ------------------
81 * Fixed a serious bug which could lead to false signature
82 verification results when more than one signature is fed to gpg.
83 This is the primary reason for releasing this version.
85 * Protection against the recent Klima/Rosa attck on secret key
86 rings.
88 * Corrected hash calculation for input data larger than 512M - it
89 was just wrong, so you might notice bad signature in some very
90 big files. It may be wise to keep an old copy of GnuPG around.
92 * Secret keys are no longer imported unless you use the new option
93 --allow-secret-key-import.
95 PGP quirks
96 ----------
98 * Can handle (but not display) PGP's photo IDs.
100 * Better default values to increase compatibilty with PGP.
102 * Many other small enhancements to support the not fully-OpenPGP
103 compliant PGP versions.
105 Manual
106 ------
108 * The manual called GNU Privacy Handbook (GPH) is a separate
109 package and available preformatted in English, German, Italian,
110 Russian and Spanish at http://www.gnupg.org/docs.html.
111 [Due to the complicated build process, the source is currently
112 on available from CVS]