Hi, Thanks for all the activity on this bug. I have a couple of comments
i) finding this bug (and, well, some of the associated code quality issues with bcrypt) has persuaded me that I don't want to use bcrypt for any data I care about. ii) "gpg -c --cipher-algo aes" is almost certainly a better solution to the problem of wanting to reliable encrypt data with passphrase protection iii) since I'm an arrogant so and so, I think I'd go further and suggest that we should discourage new users from using bcrypt; instead we should try and fix it enough that people who already have files encrypted using it can continue to decrypt them in the future. Maybe even put a note to this effect in the package description?
Regards, Matthew -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
