Differences between version 63 and predecessor to the previous major change of GPG/PGPNotes.
Other diffs: Previous Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 63 | Last edited on Sunday, May 14, 2006 1:29:37 pm | by CraigBox | Revert |
| Older page: | version 61 | Last edited on Sunday, February 6, 2005 7:14:54 pm | by MattBrown | Revert |
@@ -1,24 +1,12 @@
-See also
[GnuPG Keysigning Party HOWTO
| http://www.cryptnet
.net/fdp
/crypto/gpg
-party
.html]
+PGP stands for "Pretty Good Privacy". An open-source version (that is compatible with PGP) is called GPG, for "[GNU] Privacy Guard". You can
[get
GnuPG from its webpage
|http://www.gnupg
.org]; Debian
/Ubuntu users can type <tt>apt
-get install gnupg</tt>
.
-# Introduction
-# Creating and managing keys
-# Finding Keys
-# General Notes
-# How
to sign/verify files
+Below, we give examples of how
to set up GPG ready for use on your system.
-----
+!!! __Creating And Managing Keys__
-PGP stands for "Pretty Good Privacy". An open-source version (that is compatible with PGP) is called GPG for "[GNU] Privacy Guard".
+!! Graphical programs to help out
-[GnuPG|http://www.gnupg.org]
-
-Debian: apt-get install gnupg
-
-See [GPGMailClients] for integrating encryption into your favourite email client.
-Below, we give examples of how to set up GPG ready for use on your system.
-
-!!! __Creating And Managing Keys__
! SeaHorse
There is a graphical interface to key management called [Seahorse|http://seahorse.sourceforge.net/]. It makes it easy to see who has signed whose keys, and you can edit/create keys as well as sign and encrypt/decrypt messages. It is still in development, and does not use protected memory (ie it is not setuid), so don't type your passphrase into it if others have access to your machine (and you are paranoid). There is an official debian package (apt-get install seahorse).
@@ -192,8 +180,18 @@
gpg --rebuild-keydb-caches
increases the speed of many operations for existing keyrings
+
+!!How to get all the keys of people who have signed your key
+
+sig 21100060 2005-02-05 [[User ID not found]
+
+So, who are all these numbers that have signed my key?
+
+ gpg --with-colons --list-sigs <your-key-id> | \
+ cut -f 5 -d':' | xargs gpg --recv-key
+
----
!!!How to verify files with gpg/pgp
(2003). After the famous ftp.gnu.org compromise, the [FSF] changed their policy - instead of uploading package [MD5] checksum to the ftp server, package maintainers now GPG-sign the packages. This makes it impossible for a cracker to modify a package without anyone noticing, since the cracker can't generate the signature (unless they managed to compromise or steal the person's private key).
@@ -236,6 +234,12 @@
There is a comprehensive table of what algorithms are supported by every version:
https://netfiles.uiuc.edu/ehowes/www/pgp-summ.htm
+
+!!!See also
+
+* [GnuPG Keysigning Party HOWTO | http://www.cryptnet.net/fdp/crypto/gpg-party.html]
+* [GPGMailClients], for integrating encryption into your favourite email client.
+* [KeySigningScripts]
----
Part of CategoryCryptography
