I found examples of the use of 32 bit gpg key ids in the documentation and code. This is a bad behavior, because now it is very easy to generate a colliding 32bit key id with special software.
More information on trouble: https://evil32.com/
In my opinion, a good idea to specify in the documentation that short key ids are no longer safe.
Possible in gpget code is to completely eliminate processing of short ids. This is the current reality.
I found examples of the use of 32 bit gpg key ids in the documentation and code. This is a bad behavior, because now it is very easy to generate a colliding 32bit key id with special software.
More information on trouble: https://evil32.com/
In my opinion, a good idea to specify in the documentation that short key ids are no longer safe.
Possible in gpget code is to completely eliminate processing of short ids. This is the current reality.