gnupg vs gnupg2 - Package dependencies don't make sense.
DebianThis forum is for the discussion of Debian Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
gnupg vs gnupg2 - Package dependencies don't make sense.
What are the differences between the `gnupg` and `gnupg2` in etch/main?
Along those lines, why is most every package in the standard install dependent on the `gnupg` package, but not `gnupg2`? I thought that they would provide the same capabilities. I know why you need ONE of them - signature checking on packages, etc. But why not `gnupg2`?
GnuPG2 != PGP2. PGP2 is a different implementation of the OpenPGP standard, nothing to do with GnuPG OR GnuPG2.
As such, neither gnupg nor gnupg2 supports the IDEA cipher due to patent restrictions, and neither ever has. So, I'm still not sure what the difference is.
"GnuPG-2 has a different architecture than GnuPG-1 (e.g. 1.4.7) in that
it splits up functionality into several modules. However, both
versions may be installed alongside without any conflict. In fact,
the gpg version from GnuPG-1 is able to make use of the gpg-agent as
included in GnuPG-2 and allows for seamless passphrase caching. The
advantage of GnuPG-1 is its smaller size and the lack of dependency on
other modules at run and build time. We will keep maintaining GnuPG-1
versions because they are very useful for small systems and for server
based applications requiring only OpenPGP support."
For the record I fully support those in their efforts to go gnupg-2 only
on Gentoo. However it's not been practical for some time, and likely
will continue to be such. There is a bit of upstream chaos going on, and
till they rein in the problems. Not much we can do downstream.
there are links to some bug reports and other threads in that post which seem relevant.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.