diff --git a/main.c b/main.c index 6758190..be3007e 100644 --- a/main.c +++ b/main.c @@ -169,7 +169,7 @@ static void usage(void) print_output("General options:\n"); print_output(" -c check integrity of file written on decompression\n"); print_output(" -d decompress\n"); - print_output(" -e password protected encryption on compression\n"); + print_output(" -e password protected sha512/aes128 encryption on compression\n"); print_output(" -h|-? show help\n"); print_output(" -H display md5 hash integrity information\n"); print_output(" -i show compressed file information\n"); diff --git a/man/lrzip.1 b/man/lrzip.1 index f17347c..1a53c57 100644 --- a/man/lrzip.1 +++ b/man/lrzip.1 @@ -34,6 +34,7 @@ Here is a summary of the options to lrzip\&. General options: \-c check integrity of file written on decompression \-d decompress + \-e password protected sha512/aes128 encryption on compression \-h|\-? show help \-H display md5 hash integrity information \-i show compressed file information @@ -93,6 +94,17 @@ Decompress. If this option is not used then lrzip looks at the name used to launch the program. If it contains the string "lrunzip" then the \-d option is automatically set. .IP +.IP "\fB-e\fP" +Encrypt. This option enables high grade password encryption using a combination +of multiply sha512 hashed password, random salt and aes128 CBC encryption. +Passwords up to 500 characters long are supported, and the encryption mechanism +used virtually guarantees that the same file created with the same password +will never be the same. Furthermore, the password hashing is increased +according to the date the file is encrypted, increasing the number of CPU +cycles required for each password attempt in accordance with Moore's law, thus +making the difficulty of attempting brute force attacks proportional to the +power of modern computers. +.IP .IP "\fB-h|-?\fP" Print an options summary page .IP