How do I fix "WARNING: message was not integrity protected" when using GPG symmetrical encryption?

Background

CAST-5 is an older encryption algorithm used by GnuPG because AES didn't exist yet back in the time GnuPG was created initially ^source. It's not widely used (apart from GnuPG for compatibility reasons).

The WARNING: message was not integrity protected is because this feature isn't turned on by default at time of encryption. If this was turned on, GnuPG could tell if the file has been altered in transit.

_{Update: modern versions of GnuPG shipped with Ubuntu/Debian now have MDC enabled by default and you should never see this message again for anything signed with these newer versions.}

Solutions

To use a stronger AES-256 you've got to specify it either on the command line or in your configuration file.

Command-line: add the --cipher-algo AES256 option so the full line to encrypt becomes
```
gpg -o myfile.gpg --cipher-algo AES256 --symmetric myfile
```
Configuration file (recommended): add the following line to your ~/.gnupg/gpg.conf configuration file.
```
cipher-algo AES256
```
I recommend this approach because it will be used for all future GPG operations on this user account.

There's nothing to change for the user to decrypt the file - GnuPG will detect this automatically.

Note that using the AES-256 cipher, the message is automatically protected for integrity. To manually enable the integrity protection on other ciphers for which this is not enabled (like CAST-5) add the --force-mdc option when encrypting.

Even better: sign!

An even better approach would be to sign your files with your keypair (if you have it). Just add the --sign option to the encryption command, like this:

gpg -o myfile.gpg --cipher-algo AES256 --sign --symmetric myfile

This will not only validate the integrity of the file, but also make it possible for the recipient of the file to verify the origin. Any alterations on the file would have the signature check to fail.

gertvdijk

Posted 2013-08-19T14:22:16.660

Reputation: 3 396

Don't I need a certificate to sign ? – bilal fazlani – 2016-10-03T11:50:33.387

@bilalfazlani to sign you will need a GnuPG keypair, yes. No need to make it public if you don't want to. Just share the public key with the peers you are sharing the encrypted files with and they should verify the fingerprint of the key with you. – gertvdijk – 2016-10-03T11:59:48.870

Thank you for the detailed answer. Can you explain more about how to use the keypair? – ben-Nabiy Derush – 2017-07-28T14:47:20.123

"message was not integrity protected" happens at the receipient side and you tell how to fix this on the sender side. The question is how to ignore the issue on the receiving side to be able to decrypt older messages (in enigmail) – ensonic – 2018-10-03T08:44:26.987

@ben-NabiyDerush These two articles might clear up your questions on how (and why) to use a public and private keypair. Public-key cryptography. Web of Trust

– jpaugh – 2019-09-23T16:46:32.330

Btw you can just gpg -c myfile to encrypt and gpg myfile.gpg to decrypt, output will be decrypted myfile by default. – cprn – 2016-10-12T14:36:43.240

1@CyprianGuerra gpg myfile.gpg will result in decrypted output sent to stdout on my system... – gertvdijk – 2016-10-13T13:40:06.853

Interesting. I have it on defaults... – cprn – 2016-10-14T01:13:52.693

I downloaded GUI from here and decrypted file using it. It worked! https://pgptool.github.io/

– Iftikhar Ahmad Dar – 2019-09-23T15:29:54.987