Ask HN: How secure is GPG using a symmetric cypher?
If I encrypt a file using a 20 character password like so:
gpg -c --force-mdc file
Assuming the password doesn't appear on any dictionary lists, and has enough randomness to require brute force, how secure is the result?
6 comments
[ 3.4 ms ] story [ 23.6 ms ] threadO yeah, keyloggers don't have to be in your computers software either https://freedom-to-tinker.com/blog/felten/acoustic-snooping-...
The adversary would have to know all three passwords to decrypt the final file.gpg.gpg.gpg, correct?
GPG doesn't have a particularly great KDF, so shorter passphrases are an issue, but a 20 character passphrase compensates for that.