* gpg.sgml: Point out that if the user absolutely must, it's better to use

--pgpX than forcing an algorithm manually. Better still not to use anything, of course.
2024-11-11 21:48:50 +01:00 · 2002-12-01 01:51:34 +00:00 · 2002-12-01 01:51:34 +00:00 · 7917a43b81
commit 7917a43b81
parent 31e09a853d
2 changed files with 15 additions and 0 deletions
--- a/doc/ChangeLog
+++ b/doc/ChangeLog
@ -1,3 +1,9 @@
+2002-11-30  David Shaw  <dshaw@jabberwocky.com>
+
+	* gpg.sgml: Point out that if the user absolutely must, it's
+	better to use --pgpX than forcing an algorithm manually.  Better
+	still not to use anything, of course.
+
 2002-11-25  David Shaw  <dshaw@jabberwocky.com>

 	* gpg.sgml: Document --sig-policy-url, --cert-policy-url,
--- a/doc/gpg.sgml
+++ b/doc/gpg.sgml
@ -2509,6 +2509,15 @@ compression algorithm.  By default, GnuPG will do the right thing and
 create messages that are usable by any OpenPGP program.  Only override
 this safe default if you know what you are doing.
 </para>
+
+<para>
+If you absolutely must override the safe default, you are far better
+off using the --pgp2, --pgp6, or --pgp7 options.  These options are
+safe as they do not force any particular algorithms in violation of
+OpenPGP, but rather reduce the available algorithms to a "PGP-safe"
+list.
+</para>
+
 </refsect1>