#987645 gpg-agent: default --min-passphrase-nonalpha value should be 0

Package:
gpg-agent
Source:
gnupg2
Description:
GNU privacy guard - cryptographic agent
Submitter:
Vincent Lefevre
Date:
2021-04-26 22:09:03 UTC
Severity:
minor
Tags:
#987645#5
Date:
2021-04-26 22:04:17 UTC
From:
To:
When I type a passphrase with only letters and spaces, I get

  A passphrase should contain at least 1 digit or special character.

probably because the default --min-passphrase-nonalpha value is 1.
On a long passphrase, this doesn't add any security (in particular,
adding one random letter provides more possibilities than a random
digits) and this is against NIST rules

https://pages.nist.gov/800-63-3/sp800-63b.html#memsecretver

"Verifiers SHOULD NOT impose other composition rules (e.g., requiring
mixtures of different character types or prohibiting consecutively
repeated characters) for memorized secrets."