linux-gpg — revision history

rev 30 | foxhop | 1405158978000 | JSON

	rev 29			rev 30
	142	If you want to encrypt a directory instead of a file, use the gpg-zip tool:		142	If you want to encrypt a directory instead of a file, use the gpg-zip tool:
	143			143
n	144	.. code-block: bash	n	144	.. code-block:: bash
	145			145
	146	gpg-zip ~/home/user/secret-files > ~/home/user/secret-files.gpg-zip		146	gpg-zip ~/home/user/secret-files > ~/home/user/secret-files.gpg-zip
	148	If you want to use a single shared key use the --symmetric flag. It will prompt		148	If you want to use a single shared key use the --symmetric flag. It will prompt
	>	you for a password twice:		>	you for a password twice:
	149			149
n	150	.. code-block: bash	n	150	.. code-block:: bash
	151			151
	152	gpg-zip --symmetric ~/.password-store > password-store.gpg-zip		152	gpg-zip --symmetric ~/.password-store > password-store.gpg-zip
t			t	153
				154
				155	--list-archive:
				156	List the contents of the specified archive.
				157
	153			158
	154	Homework		159	Homework

rev 29 | foxhop | 1405157137000 | JSON

	rev 28			rev 29
	137			137
	138			138
t	139	encrypt a directory	t	139	Encrypt a directory
	140	===================		140	===================
	141			141

rev 28 | foxhop | 1405157120000 | JSON

+encrypt a directory
+===================
+If you want to encrypt a directory instead of a file, use the gpg-zip tool:
+.. code-block: bash
+ gpg-zip ~/home/user/secret-files > ~/home/user/secret-files.gpg-zip
+If you want to use a single shared key use the --symmetric flag.  It will prompt
+ you for a password twice:
+.. code-block: bash
+ gpg-zip --symmetric ~/.password-store > password-store.gpg-zip
+Homework
+============

rev 27 | foxhop | 1404081069000 | JSON

	rev 26		rev 27
	134	5		134	5
	135	y		135	y
t			t	136	quit
	136			137
	137			138

rev 26 | foxhop | 1404081033000 | JSON

	rev 25			rev 26
	123	gpg --delete-secret-key <KeyID>		123	gpg --delete-secret-key <KeyID>
	124			124
n			n	125	Edit and Trust a key
				126	====================
				127
				128	To edit a keys trust level (for instance to completely trust your own key) do th
				>	e following:
				129
				130	.. code-block:: bash
				131
				132	gpg --edit-key <KeyID>
				133	trust
				134	5
				135	y
				136
				137
	125	Homework		138	Homework
	126	============		139	============
	139	* The keyring files are binary and exist in ~/.gnupg.		152	* The keyring files are binary and exist in ~/.gnupg.
	140			153
t	141		t

rev 25 | foxhop | 1404075609000 | JSON

	rev 24			rev 25
	123	gpg --delete-secret-key <KeyID>		123	gpg --delete-secret-key <KeyID>
	124			124
n	125		n
	126	Homework		125	Homework
	127	============		126	============
	134	#. re-import public and private key pair		133	#. re-import public and private key pair
	135	#. try to decrypt test file again		134	#. try to decrypt test file again
t			t	135
				136	Misc
				137	====
				138
				139	* The keyring files are binary and exist in ~/.gnupg.
				140
				141

rev 24 | foxhop | 1403527595000 | JSON

	rev 23			rev 24
	8			8
	9			9
t	10	Create Key pair	t	10	Create a key pair
	11	==================		11	==================
	12			12

rev 23 | foxhop | 1403527565000 | JSON

	rev 22			rev 23
	127	============		127	============
	128			128
n	129	#. create a gpg keypair	n	129	#. create a gpg key pair
	130	#. encrypt a test file		130	#. encrypt a test file
	131	#. decrypt a test file		131	#. decrypt a test file
t	132	#. export public and private keypair	t	132	#. export public and private key pair
	133	#. delete public and private keypair		133	#. delete public and private key pair
	134	#. re-import public and private keypair		134	#. re-import public and private key pair
	135	#. try to decrypt test file again		135	#. try to decrypt test file again

rev 22 | foxhop | 1403527546000 | JSON

	rev 21			rev 22
	8			8
	9			9
t	10	Create GPG Keypair	t	10	Create Key pair
	11	==================		11	==================
	12			12

rev 21 | foxhop | 1403527511000 | JSON

	rev 20			rev 21
	2	###########		2	###########
	3			3
t	4	Short how to document on setting up a PGP (GPG) keypair and a short lesson on ho	t	4	This document shows how to use the command line to work with PGP (GPG) for encry
	>	w to encrypt a message as well as configuring "pass" password client for using t		>	ption.
	>	he keypair to protect passwords.
	5
	6	This document does not use a GUI and only uses the command line.
	7			5
	8	.. contents::		6	.. contents::

rev 20 | foxhop | 1403526854000 | JSON

+ gpg --delete-secret-key <KeyID>
+Homework
+============
+#. create a gpg keypair
+#. encrypt a test file
+#. decrypt a test file
+#. export public and private keypair
+#. delete public and private keypair
+#. re-import public and private keypair
+#. try to decrypt test file again

rev 19 | foxhop | 1403526643000 | JSON

	rev 18			rev 19
	68	Then paste the encrypted message into the terminal.		68	Then paste the encrypted message into the terminal.
	69			69
t	70	or optionally omit the 'encrypted message file' and paste the payload directly i	t	70	Optionally omit the 'encrypted message file' and paste the payload directly into
	>	nto the cmd prompt.		>	the cmd prompt.
	71			71
	72	Export a public key		72	Export a public key

rev 18 | foxhop | 1403526626000 | JSON

	rev 17			rev 18
	95	========================		95	========================
	96			96
t	97	To import a public key file:	t
	98
	99	.. code-block:: bash		97	.. code-block:: bash
	100			98

rev 17 | foxhop | 1403526604000 | JSON

	rev 16			rev 17
	104			104
	105			105
n	106	Import a public key	n	106	Import a private key
	107	========================		107	========================
	108			108
	109	.. code-block:: bash		109	.. code-block:: bash
	110			110
t	111	gpg --allow-secret-key-import --import <public key file>	t	111	gpg --allow-secret-key-import --import <private key file>
	112			112
	113	This adds the private key in the file to your private key ring. Alternatively yo		113	This adds the private key in the file to your private key ring. Alternatively yo
	>	u may omit the file and paste the private key directly to the command prompt.		>	u may omit the file and paste the private key directly to the command prompt.

rev 16 | foxhop | 1403526502000 | JSON

	rev 15			rev 16
	75	To export a public key for transportation or sharing, run this:		75	To export a public key for transportation or sharing, run this:
	76			76
n	77	.. code-block::	n	77	.. code-block:: bash
	78			78
	79	gpg --export -a <KeyID>		79	gpg --export -a <KeyID>
	86	To export a private key for transportation or backup, run this:		86	To export a private key for transportation or backup, run this:
	87			87
n	88	.. code-block::	n	88	.. code-block:: bash
	89			89
	90	gpg --export-secret-key -a <KeyID>		90	gpg --export-secret-key -a <KeyID>
	97	To import a public key file:		97	To import a public key file:
	98			98
t	99	.. code-block::	t	99	.. code-block:: bash
	100			100
	101	gpg --import <public key file>		101	gpg --import <public key file>

rev 15 | foxhop | 1403526303000 | JSON

	rev 14			rev 15
	107	========================		107	========================
	108			108
n	109	.. code-block::	n	109	.. code-block:: bash
	110			110
	111	gpg --allow-secret-key-import --import <public key file>		111	gpg --allow-secret-key-import --import <public key file>
	112			112
	113	This adds the private key in the file to your private key ring. Alternatively yo		113	This adds the private key in the file to your private key ring. Alternatively yo
	>	u may omit the file and paste the private key directly to the command prompt.		>	u may omit the file and paste the private key directly to the command prompt.
t			t	114
				115	Delete a public key
				116	=====================
				117
				118	.. code-block:: bash
				119
				120	gpg --delete-key <KeyID>
				121
				122	Delete a private key
				123	=====================
				124
				125	.. code-block:: bash
				126
				127	gpg --delete-secret-key <KeyID>
				128

rev 14 | foxhop | 1403526165000 | JSON

+or optionally omit the 'encrypted message file' and paste the payload directly i
->
+nto the cmd prompt.
+Export a public key
+========================
+To export a public key for transportation or sharing, run this:
+.. code-block::
+ gpg --export -a <KeyID>
+This will output the public key for a given KeyID as ascii, which may be shared
+and distributed to anyone.
+Export a private key
+========================
+To export a private key for transportation or backup, run this:
+.. code-block::
+ gpg --export-secret-key -a <KeyID>
+This will output the private key for a given KeyID as ascii, which must be safel
+y gaurded.
+Import a public key
+========================
+To import a public key file:
+.. code-block::
+ gpg --import <public key file>
+This adds the public key in the file to your public key ring.  Alternatively you
+ may omit the file and paste the public key directly to the command prompt.
+Import a public key
+========================
+.. code-block::
+ gpg --allow-secret-key-import --import <public key file>
+This adds the private key in the file to your private key ring. Alternatively yo
+u may omit the file and paste the private key directly to the command prompt.

rev 13 | foxhop | 1403525363000 | JSON

	rev 12			rev 13
	64	.. code-block:: bash		64	.. code-block:: bash
	65			65
t	66	gpg -d <encrypted message file>	t	66	gpg -d <encrypted asc message file>
	67			67
	68	Then paste the encrypted message into the terminal.		68	Then paste the encrypted message into the terminal.

rev 12 | foxhop | 1403525321000 | JSON

	rev 11			rev 12
	44	It will prompt for a passphrase three times unless a valid one is submitted, the		44	It will prompt for a passphrase three times unless a valid one is submitted, the
	>	n it will allow you to write an encrypted message. press ctrl-d to end the mess		>	n it will allow you to write an encrypted message. press ctrl-d to end the mess
	>	age.		>	age.
	45			45
t			t	46	Alternatively you may encrypt any file (text or binary) using a command like thi
				>	s:
				47
				48	.. code-block:: bash
				49
				50	gpg --local-user <KEYID> -as <file>
				51
				52	This will prompt for your passphrase and on success generate an 'asc' file.
				53
				54	For example, lets encrypt the fake test file 'secret-raw-payload.txt' using the
				>	following command:
				55
				56	.. code-block:: bash
				57
				58	gpg --local-user MYKEYID1 -as secret-raw-payload.txt
				59
				60
	46	Decrypt a test message		61	Decrypt a test message
	47	==============================		62	==============================

rev 11 | foxhop | 1403524710000 | JSON

	rev 10			rev 11
	5			5
	6	This document does not use a GUI and only uses the command line.		6	This document does not use a GUI and only uses the command line.
t			t	7
				8	.. contents::
				9
				10
	7			11
	8	Create GPG Keypair		12	Create GPG Keypair

rev 10 | foxhop | 1403524687000 | JSON

	rev 9			rev 10
	40	It will prompt for a passphrase three times unless a valid one is submitted, the		40	It will prompt for a passphrase three times unless a valid one is submitted, the
	>	n it will allow you to write an encrypted message. press ctrl-d to end the mess		>	n it will allow you to write an encrypted message. press ctrl-d to end the mess
	>	age.		>	age.
	41			41
t	42	decrypt the test message	t	42	Decrypt a test message
	43	==============================		43	==============================
	44			44

rev 9 | foxhop | 1403524580000 | JSON

	rev 8			rev 9
	4	Short how to document on setting up a PGP (GPG) keypair and a short lesson on ho		4	Short how to document on setting up a PGP (GPG) keypair and a short lesson on ho
	>	w to encrypt a message as well as configuring "pass" password client for using t		>	w to encrypt a message as well as configuring "pass" password client for using t
	>	he keypair to protect passwords.		>	he keypair to protect passwords.
	5			5
t	6	Creating GPG Keys Using the Command Line	t	6	This document does not use a GUI and only uses the command line.
	7	==========================================		7
				8	Create GPG Keypair
				9	==================
	8			10
	9	Use the following shell command:		11	Use the following shell command:

rev 8 | foxhop | 1403524413000 | JSON

	rev 7			rev 8
	27	gpg --list-keys		27	gpg --list-keys
	28			28
n	29	Validate a GPG passphrase and encrypt a test message	n	29	Encrypt a test message
	30	=========================================================		30	=========================================================
t			t	31
				32	This process may also be used to Validate a private key passphrase.
	31			33
	32	.. code-block:: bash		34	.. code-block:: bash

rev 7 | foxhop | 1403524357000 | JSON

	rev 6			rev 7
	16	Also memorize your long passphrase and never tell anyone it, ever.		16	Also memorize your long passphrase and never tell anyone it, ever.
	17			17
n	18	Document your new <keyid>	n	18	Document your new 'KeyID'.
	19			19
t	20	Determine KeyID	t	20	List all keys
	21	===================		21	=============================
				22
				23	This is a great way to determine a 'KeyID'
	22			24
	23	.. code-block:: bash		25	.. code-block:: bash

rev 6 | foxhop | 1403524234000 | JSON

	rev 5			rev 6
	39	.. code-block:: bash		39	.. code-block:: bash
	40			40
n	41	gpg -d	n	41	gpg -d <encrypted message file>
	42			42
	43	Then paste the encrypted message into the terminal.		43	Then paste the encrypted message into the terminal.
t			t	44
				45	or optionally omit the 'encrypted message file' and paste the payload directly i
				>	nto the cmd prompt.

rev 5 | foxhop | 1403478006000 | JSON

	rev 4			rev 5
	34	It will prompt for a passphrase three times unless a valid one is submitted, the		34	It will prompt for a passphrase three times unless a valid one is submitted, the
	>	n it will allow you to write an encrypted message. press ctrl-d to end the mess		>	n it will allow you to write an encrypted message. press ctrl-d to end the mess
	>	age.		>	age.
	35			35
t			t	36	decrypt the test message
				37	==============================
				38
				39	.. code-block:: bash
				40
				41	gpg -d
				42
				43	Then paste the encrypted message into the terminal.

rev 4 | foxhop | 1403477377000 | JSON

+Also memorize your long passphrase and never tell anyone it, ever.
+Document your new <keyid>
+Determine KeyID
+===================
+.. code-block:: bash
+ gpg --list-keys
+Validate a GPG passphrase and encrypt a test message
+=========================================================
+.. code-block:: bash
+ gpg --local-user <KEYID> -as
+It will prompt for a passphrase three times unless a valid one is submitted, the
+n it will allow you to write an encrypted message.  press ctrl-d to end the mess
+age.

rev 3 | foxhop | 1403474560000 | JSON

	rev 2			rev 3
	14			14
	15	Answer the prompts, I typically accept all defaults which is 2048 bits and RSA.		15	Answer the prompts, I typically accept all defaults which is 2048 bits and RSA.
t			t	16	Also memorize your long passphrase and never tell anyone it, ever.
	16			17
	17			18

rev 2 | foxhop | 1403473569000 | JSON

	rev 1			rev 2
	9	Use the following shell command:		9	Use the following shell command:
	10			10
t	11	.. code-block::	t	11	.. code-block:: bash
	12			12
	13	gpg --gen-key		13	gpg --gen-key

rev 1 | foxhop | 1403473541000 | JSON

+Linux GPG
+###########
+Short how to document on setting up a PGP (GPG) keypair and a short lesson on ho
+w to encrypt a message as well as configuring "pass" password client for using t
+he keypair to protect passwords.
+Creating GPG Keys Using the Command Line
+==========================================
+Use the following shell command:
+.. code-block::
+ gpg --gen-key
+Answer the prompts, I typically accept all defaults which is 2048 bits and RSA.