GPGKey

Differences between revisions 1 and 8 (spanning 7 versions)
Revision 1 as of 2005-09-25 01:21:02
Size: 1938
Editor: gw
Comment:
Revision 8 as of 2005-11-28 08:53:05
Size: 3733
Editor: S0106000d88b9f3db
Comment: link to GPGKeyOnUSBDrive
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
= Create a GPG Key = = Create A GPG Key =
GnuPG is a complete and free replacement for PGP.
Line 11: Line 12:
 * Type in Your {{{First Name}}}, add a comment if you want. Press Enter.  * Type in your {{{First Name}}}, add a comment if you want. Press Enter.
Line 14: Line 15:
$ -
Line 17: Line 18:
= Export the key = = Export Your Key =
Line 19: Line 20:
gpg --export -a {{{User Name}}} > public.key gpg --export -a "User Name" > public.key
Line 22: Line 23:
= Submit your key = Note that the "User Name" is actually your real full name, not the user name you usually use in Ubuntu, and that the quotes should stay in place around your name.

= Submit Your Key =

Using GnuPG:
{{{
gpg --send-keys --keyserver keyserver.ubuntu.com <KEYID>
}}}

Using a webbrowser:
Line 24: Line 35:
 * Open {{{http://pgp.mit.edu}}} in a browser window.  * Open http://pgp.mit.edu in a browser window.
Line 28: Line 39:
= Use your key in Evolution = = Get Your Key Signed =
 * Locate someone that lives near you and can meet with you to verify your id. I've used http://www.biglumber.com/
 * Arrange for a meeting. Bring at least one ID with photo and printed fingerprint of your key, ask the same from the person you will be meeting with.
 * Meet, verify your IDs and exchange fingerprints
 * Sign the key of the person you've just met. Send him/her the key you've just signed.
 * Update your keys on the keyserver, the signature you've just created will be uploaded.

= Use Your Key in Evolution =
Line 36: Line 54:
-
Line 39: Line 57:
= Use your key in Mozilla Thunderbirs = = Use Your Key in Mozilla Thunderbird =
Install the {{{Enigmail plugin}}} either by:
{{{
sudo apt-get install mozilla-thunderbird-enigmail
}}}
or
by downloading the plugin from [http://enigmail.mozdev.org/ here] and install it manually

Configure GPG in Thunderbird under: {{{Enigmail->Preferences}}} and add under {{{GnuPG executable path}}} the following path {{{/usr/bin/gpg}}}

= GUI For GPG Key Management =
You can install [http://seahorse.sourceforge.net/ Seahorse] to manage your keys via apt:
{{{
sudo apt-get install seahorse
}}}

Or search Synaptic for seahorse. Note that you can actually do the entire key creation & exporting process in Seahorse, with a wizard to guide you through the creation if you want.

= See Also =
 * GPGKeyOnUSBDrive
 * UnsignedGpgKey
 * ["GPGsigningforSSHHowTo"]

= Resources =
 * [http://www.linuxgazette.com/node/8746 Using GnuPG, on Linux Gazette]
 * [http://dudu.dyn.2-h.org/nist/gpg-enigmail-howto.php GPG-Enigmail Howto]

Create A GPG Key

GnuPG is a complete and free replacement for PGP.

gpg --gen-key
  • Then enter a 1 to create a standard DSA/ElGamal key. Press Enter.

  • Type in 2048. Press Enter.

  • Type in 0. Press Enter.

  • Enter a y. Press Enter.

  • Type in your Real Name. Press Enter.

  • Type in your REAL email address. Press Enter.

  • Type in your First Name, add a comment if you want. Press Enter.

  • Type O. Press Enter. It will now create your Key.

  • You will have to give it a Pass Phrase

- Usually a short sentence or phrase that isn't birthdays, names, etc. of people in your family. I will say this to you, because when it comes to pass phrases, they're not easy sometimes... so write it down. Because what you DON'T want to do is forget it!!

Export Your Key

gpg --export -a "User Name" > public.key

Note that the "User Name" is actually your real full name, not the user name you usually use in Ubuntu, and that the quotes should stay in place around your name.

Submit Your Key

Using GnuPG:

gpg --send-keys --keyserver keyserver.ubuntu.com <KEYID>

Using a webbrowser:

  • Copy the content of public.key:

  • Open http://pgp.mit.edu in a browser window.

  • Paste the copied content in the box under the label, Submit a key

  • Click on Submit this key to the keyserver!

Get Your Key Signed

  • Locate someone that lives near you and can meet with you to verify your id. I've used http://www.biglumber.com/

  • Arrange for a meeting. Bring at least one ID with photo and printed fingerprint of your key, ask the same from the person you will be meeting with.
  • Meet, verify your IDs and exchange fingerprints
  • Sign the key of the person you've just met. Send him/her the key you've just signed.
  • Update your keys on the keyserver, the signature you've just created will be uploaded.

Use Your Key in Evolution

  • Go back to http://pgp.mit.edu and type in your name in the Search String box.

  • Highlight and Copy the section of the result page under "User ID" (It should be your name, comment, and email address.)
  • Open Evolution and go to Edit->Preferences.

  • Choose your email account, click on it, and then click Edit.

  • Click on the security tab.

  • In the PGP/GPG Key ID: box, paste the User ID from the web page result.

  • Click OK. Click Close.

If you want to use your key in any new email, simply click on the Security menu item in your new mail message, and then click on PGP Sign ...

Use Your Key in Mozilla Thunderbird

Install the Enigmail plugin either by:

sudo apt-get install mozilla-thunderbird-enigmail

or by downloading the plugin from [http://enigmail.mozdev.org/ here] and install it manually

Configure GPG in Thunderbird under: Enigmail->Preferences and add under GnuPG executable path the following path /usr/bin/gpg

GUI For GPG Key Management

You can install [http://seahorse.sourceforge.net/ Seahorse] to manage your keys via apt:

sudo apt-get install seahorse

Or search Synaptic for seahorse. Note that you can actually do the entire key creation & exporting process in Seahorse, with a wizard to guide you through the creation if you want.

See Also

Resources

Credits: [http://ubuntuforums.org/showthread.php?t=37086&page=1&pp=10&highlight=enigmail kassetra]

GPGKey (last edited 2008-08-06 16:59:43 by localhost)