LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 09-16-2010, 02:55 AM   #1
prabhatsoni
Member
 
Registered: Oct 2004
Location: India
Distribution: FC 12
Posts: 233

Rep: Reputation: 30
Self signed public key (GPG)


Hello folks,

The following is reproduced from the GPG Manual:

Quote:
When you distribute your public key, you are distributing the public components of your master and subordinate
keys as well as the user IDs. Distributing this material alone, however, is a security risk since it is possible for an
attacker to tamper with the key. The public key can be modified by adding or substituting keys, or by adding or
changing user IDs. By tampering with a user ID, the attacker could change the user IDís email address to have
email redirected to himself. By changing one of the encryption keys, the attacker would also be able to decrypt
the messages redirected to him.
Using digital signatures is a solution to this problem. When data is signed by a private key, the correspond-
ing public key is bound to the signed data. In other words, only the corresponding public key can be used to
verify the signature and ensure that the data has not been modified. A public key can be protected from tamper-
ing by using its corresponding private master key to sign the public key components and user IDs, thus binding
the components to the public master key. Signing public key components with the corresponding private master
signing key is called self-signing ....
After generation of they key by - gpg --gen-key - how can one go about putting in a self-signature on the public key.

Thanks in advance.


Prabhat Soni
 
Old 09-16-2010, 09:54 PM   #2
quanta
Member
 
Registered: Aug 2007
Location: Vietnam
Distribution: RedHat based, Debian based, Slackware, Gentoo
Posts: 724

Rep: Reputation: 100Reputation: 100
Quote:
Originally Posted by prabhatsoni View Post
After generation of they key by - gpg --gen-key - how can one go about putting in a self-signature on the public key.
gpg -ea -r <recipient> file

recipient = <key_name> or email

http://linsec.ca/Using_GnuPG
 
Old 09-16-2010, 10:18 PM   #3
jefro
Guru
 
Registered: Mar 2008
Posts: 11,544

Rep: Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405Reputation: 1405
I deliver the key in person.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
GPG error, no public key pr5439 Ubuntu 8 08-12-2009 10:32 AM
GPG encrpyted -- signed by which key? prn Linux - Security 2 03-13-2008 12:53 PM
Revoking GPG key with only passphrase and public key djib Linux - Security 2 03-13-2007 03:20 AM
yum public gpg key?? Niflheim Fedora 1 03-28-2005 01:46 PM
GPG Data, Secret Key but no Public Key? Aeiri Linux - Software 5 07-20-2004 06:00 PM


All times are GMT -5. The time now is 11:05 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration