LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-19-2010, 08:24 AM   #1
bbb125
LQ Newbie
 
Registered: Aug 2010
Posts: 17

Rep: Reputation: 1
gpg (GNU privacy guard)


is this a tool which is used frequently by standard linux users? should one search for a public key and add it to their public keyring for every download, or this generally reserved for special situations?
 
Old 08-19-2010, 11:24 AM   #2
bbb125
LQ Newbie
 
Registered: Aug 2010
Posts: 17

Original Poster
Rep: Reputation: 1
Not getting many responses, so I'm thinking I should rephrase my question or provide more information.

My impression of using this tool is only under very planned circumstances. The server has to have access to your public key to encrypt any information that it sends to you. So it seems like you have to configure it yourself, in other words, it has to be your server.

And as far as using this type of encryption with e-mail, is this only used when you have made agreements with others in advance? So, if I want to send encrypted e-mails to my friend Jack, I have to send him my public key first, and then he has to add it to his public keyring. Only then will we be able to send encrypted e-mails to each other.

So, again, use of this tool is very rare, unless it is specifically planned in advance between the parties.

Am I on the right track here?
 
Old 08-20-2010, 05:05 AM   #3
chrism01
LQ Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Centos 6.8, Centos 5.10
Posts: 17,241

Rep: Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325Reputation: 2325
I think you'll find that in most real cases it would be a one at a time thing ie you send your public key to whoever wants to communicate with you and then they can use it to encrypt a file.
In theory, you could have a public server holding public keys, but you'd have to trust that that server is trustworthy...
There is also the Enigmail extension for Thunderbird etc http://enigmail.mozdev.org/home/index.php
 
Old 08-21-2010, 09:36 AM   #4
taylorkh
Senior Member
 
Registered: Jul 2006
Location: North Carolina
Distribution: CentOS 6, CentOS 7 (with Mate), Ubuntu 16.04 Mate
Posts: 1,398

Rep: Reputation: 101Reputation: 101
I don't want to try and recreate all of the documentation available on-line about public key encryption - I recommend a search for more in depth study. Here is my experience using gpg and Enigmail for Thunderbird.

First I installed Enigmail and gpg on my Linux machine. Then, using the wizard provided by Enigmail/gpg I created a key pair for my email account. This consists of two keys. A public key and a private key. Again using the wizard I published my PUBLIC key to a key server (pool.sks-keyservers.net) as recommended by the wizard. My private key is stored on my computer only and is protected by a STRONG passphrase.

I sent an email to my sister and signed it with Enigmail/gpg. When she received the email she used Enigmail/gpg to lookup my signature on the key server and to download my PUBLIC key. She created an email to me and encrypted it with MY public key. She also added her signature.

I received the email and used my PRIVATE key to decrypt it. I also looked up her signature on the key server and downloaded her PUBLIC key. I can now use her PUBLIC key to send her an email which only she can decrypt (using her PRIVATE key).

Now that I have figured out how to use it - to be honest I do not use it day to day - but I could if I wanted to.

If you have a couple of email accounts you can install Enigmail/gpg and create key pairs for both accounts. Then practice sending encrypted email between them. Copy a third email account on the emails and you will see that the body of the email is indeed encrypted (Enigmail will automatically decrypt the messages by default).

Hope this helps,

Ken
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
GPG: Bad session key gpg between gpg on linux and gpg gui on windows XP konqi Linux - Software 1 07-21-2009 10:37 AM
LXer: Open source Untangle guard union's privacy LXer Syndicated Linux News 0 11-25-2008 03:40 AM
LXer: GNU/Linux free software tools to preserve your online privacy, anonymity and se LXer Syndicated Linux News 0 07-11-2008 08:50 PM
LXer: Core Security: GNU Privacy Guard flaw allows phishing-like attacks LXer Syndicated Linux News 0 03-09-2007 11:01 PM
GNU Privacy Assistant (GPA) Problems Marcus_Crassus Linux - Software 3 08-03-2005 10:33 AM


All times are GMT -5. The time now is 08:36 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration