LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 08-14-2006, 10:55 AM   #16
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47

Thanks Happy Tux.
It is there.

[root@c83-250-110-112 nissanka]# gpg --list-keys
/root/.gnupg/pubring.gpg
------------------------

pub 1024D/3BFB3F5F 2005-12-04
uid Gunnar Johansson <info@gunnar-johansson.se>
sub 4096g/6DEDFD24 2005-12-04

[root@c83-250-110-112 nissanka]#

It seems that I don't have to bother about the location of the downloaded key. I could just go ahead with the 'import' command to attach to the key ring.

Last edited by Gins; 08-14-2006 at 10:58 AM.
 
Old 08-14-2006, 11:09 AM   #17
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
[root@c83-250-110-112 nissanka]# gpg --fingerprint 3BFB3F5F
pub 1024D/3BFB3F5F 2005-12-04
Key fingerprint = 383E F0E4 3D64 41FB 9E34 F377 6215 2549 3BFB 3F5F
uid Gunnar Johansson <info@gunnar-johansson.se>
sub 4096g/6DEDFD24 2005-12-04

[root@c83-250-110-112 nissanka]# gpg --import 3BFB3F5F
gpg: can't open `3BFB3F5F': No such file or directory
gpg: Total number processed: 0
[root@c83-250-110-112 nissanka]#

Why is the reason for failure of import command ?
I believe this import command is the one you use to attach the downloaded keys to your ringg
 
Old 08-14-2006, 11:14 AM   #18
HappyTux
Senior Member
 
Registered: Mar 2003
Location: Nova Scotia, Canada
Distribution: Debian AMD64
Posts: 3,667

Rep: Reputation: 119Reputation: 119
Quote:
Originally Posted by Gins
[root@c83-250-110-112 nissanka]# gpg --fingerprint 3BFB3F5F
pub 1024D/3BFB3F5F 2005-12-04
Key fingerprint = 383E F0E4 3D64 41FB 9E34 F377 6215 2549 3BFB 3F5F
uid Gunnar Johansson <info@gunnar-johansson.se>
sub 4096g/6DEDFD24 2005-12-04

[root@c83-250-110-112 nissanka]# gpg --import 3BFB3F5F
gpg: can't open `3BFB3F5F': No such file or directory
gpg: Total number processed: 0
[root@c83-250-110-112 nissanka]#

Why is the reason for failure of import command ?
I believe this import command is the one you use to attach the downloaded keys to your ringg
Your welcome the --import I show above is for the Public Key block that has been exported/saved to a file, you would be importing the file.???.
 
Old 08-14-2006, 11:26 AM   #19
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
Happy Tux
I don't understand what you are trying tell me here. What is the error?
 
Old 08-14-2006, 11:53 AM   #20
HappyTux
Senior Member
 
Registered: Mar 2003
Location: Nova Scotia, Canada
Distribution: Debian AMD64
Posts: 3,667

Rep: Reputation: 119Reputation: 119
Quote:
Originally Posted by Gins
Happy Tux
I don't understand what you are trying tell me here. What is the error?
Ok when you are using the import command that is used with a file like gpg --import file.asc this file needs to have been saved to your hard disk so you are importing it directly into the key ring. The proper command for your error above would be the already used gpg --keyserver pgp.mit.edu --recv-keys 3BFB3F5F that downloads then imports from a keyserver. So to use the gpg --import file.asc you would have to instead of using a keyserver to get the key, downloaded the file.asc (which the person owning the key used the gpg --export key_id file.asc then posted for download) from a webpage and saved it to your hard disk then import. Hopefully this clears up the confusion.
 
Old 08-14-2006, 12:11 PM   #21
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
Thanks Happy Tux for all your effort to help me.
To be candid, this is still confused.

1] Are you telling me that I downloaded the wrong file?

2] Do you want me to go the server and download the correct file again?

3] Do you want me to download the file which has the .asc at the end?

4] If you want me to download a file which has .asc at the end, what is the command?

I would like to hear from you again.
--------------------------------------------------------------------------

[**] I could save the following binary file. How do I save? I can copy it to the Open Office wordprocessor and save. I can use the 'vi' editor and save. What should be the name of the file? It seems it should be an .asc file. Please tell me.

The following is this particular public key
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: PGP Key Server 0.9.6
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=sP+n
-----END PGP PUBLIC KEY BLOCK-----

Last edited by Gins; 08-14-2006 at 12:38 PM.
 
Old 08-14-2006, 01:13 PM   #22
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914
Quote:
Originally Posted by Gins
So our friend Tinkster made a mistake by suggesting some 'hpk' to precede with the downloading server's address.This is a tall order. I mean not everybody knows pros cons of gpg.
Code:
$ gpg --keyserver hkp://pgp.mit.edu --recv-keys 3BFB3F5F
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
gpg: key 3BFB3F5F: public key "Gunnar Johansson <info@gunnar-johansson.se>" imported
gpg: Total number processed: 1
gpg:               imported: 1
Not really ...


Cheers,
Tink
 
Old 08-14-2006, 01:17 PM   #23
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
Thanks Tinkster

I am waiting a reply from Happy Tux.
 
Old 08-14-2006, 01:25 PM   #24
HappyTux
Senior Member
 
Registered: Mar 2003
Location: Nova Scotia, Canada
Distribution: Debian AMD64
Posts: 3,667

Rep: Reputation: 119Reputation: 119
Quote:
Originally Posted by Gins
Thanks Happy Tux for all your effort to help me.
To be candid, this is still confused.

1] Are you telling me that I downloaded the wrong file?

2] Do you want me to go the server and download the correct file again?
No with the gpg --keysever command you got the public key you wanted imported into your keyring there is nothing else to do.
Quote:
3] Do you want me to download the file which has the .asc at the end?
No if you did do that for another key then that is not available on a keyserver but which has a posted .asc file you would use the already mentioned gpg --import file.asc to put it into your keyring.

Quote:
4] If you want me to download a file which has .asc at the end, what is the command?

I would like to hear from you again.
--------------------------------------------------------------------------
If you were on a webpage then a right click and use the save as option, if for instance you wanted to do it from the command line then in the case of my public key you could use.

Code:
wget http://users.eastlink.ca/~stephencormier/publickey.asc
Which would use wget to download my public key into the current directory then if you wanted to put my key into your keyring

Code:
gpg --import publickey.asc
Would import my key.

Quote:
[**] I could save the following binary file. How do I save? I can copy it to the Open Office wordprocessor and save. I can use the 'vi' editor and save. What should be the name of the file? It seems it should be an .asc file. Please tell me.
Any editor should work the file extension/name does not matter gpg will recognize it as a signature when the --import was done but the .asc is the commonly used extension so people can see that it is supposed to be a gpg signature.
 
Old 08-14-2006, 01:37 PM   #25
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,067
Blog Entries: 11

Rep: Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914Reputation: 914
Quote:
Originally Posted by Gins
Thanks Tinkster

I am waiting a reply from Happy Tux.
That is very touching :)

I would have loved to respond in private, but unfortunately
you disabled e-Mails. I think you owe me an apology ;}


Cheers,
Tink
 
Old 08-14-2006, 01:50 PM   #26
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
Thanks Happy Tux. You have taken pains to provide me a lengthy reply.

The following worked.

[root@c83-250-110-112 nissanka]# wget http://users.eastlink.ca/~stephencormier/publickey.asc
--20:45:54-- http://users.eastlink.ca/~stephencormier/publickey.asc
=> `publickey.asc'
Resolving users.eastlink.ca... 24.222.0.104
Connecting to users.eastlink.ca|24.222.0.104|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 1,860 (1.8K) [text/plain]

100%[==================================================================>] 1,860 --.--K/s

20:45:55 (221.73 MB/s) - `publickey.asc' saved [1860/1860]

[root@c83-250-110-112 nissanka]#

-----------------------------------------------------

Is it necessary to sign a key?
What would happen if you didn't sign a key?
 
Old 08-14-2006, 02:06 PM   #27
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
I saved this key or rather downloaded file of the key using the vi editor.
I named it ' gunnar1.asc ' .

Afterwards, I copied it onto the folder where 'gpg' resides. Because when I created the file 'gunnar1.asc' , it will remain in the folder 'Desktop' .

------------------------------------------------------------
[nissanka@c83-250-110-112 ~]$ cp /home/nissanka gunnar1.asc /home/nissanka/Desktop/gnupg-1.4.4
cp: omitting directory `/home/nissanka'
[nissanka@c83-250-110-112 ~]$ ls
------------------------------------------------------------

Now I know the import command should work. So tried it and it worked.

[root@c83-250-110-112 nissanka]# gpg --import gunnar1.asc
gpg: key 3BFB3F5F: "Gunnar Johansson <info@gunnar-johansson.se>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
[root@c83-250-110-112 nissanka]#

Is signing of the key a necessary step?

Last edited by Gins; 08-14-2006 at 02:07 PM.
 
Old 08-14-2006, 02:21 PM   #28
HappyTux
Senior Member
 
Registered: Mar 2003
Location: Nova Scotia, Canada
Distribution: Debian AMD64
Posts: 3,667

Rep: Reputation: 119Reputation: 119
Quote:
Originally Posted by Gins
I saved this key or rather downloaded file of the key using the vi editor.
I named it ' gunnar1.asc ' .

Afterwards, I copied it onto the folder where 'gpg' resides. Because when I created the file 'gunnar1.asc' , it will remain in the folder 'Desktop' .

------------------------------------------------------------
[nissanka@c83-250-110-112 ~]$ cp /home/nissanka gunnar1.asc /home/nissanka/Desktop/gnupg-1.4.4
cp: omitting directory `/home/nissanka'
[nissanka@c83-250-110-112 ~]$ ls
------------------------------------------------------------

Now I know the import command should work. So tried it and it worked.

[root@c83-250-110-112 nissanka]# gpg --import gunnar1.asc
gpg: key 3BFB3F5F: "Gunnar Johansson <info@gunnar-johansson.se>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
[root@c83-250-110-112 nissanka]#

Is signing of the key a necessary step?
The signing of a key should not be done unless you have personally verified the persons identity eg. by meeting them in person and seeing some form of official identification or you know someone who you have the same level of trust with and they have personally verified the information. A key in your keyring that is unsigned by you just remains as an untrusted key there is no harm in it you can still use it for sending encrypted communications to that person with their key.
 
Old 08-14-2006, 02:42 PM   #29
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
Thanks Happy Tux for the explanation.
 
Old 08-15-2006, 02:51 PM   #30
Gins
Senior Member
 
Registered: Jul 2004
Location: Germany
Distribution: open SUSE 11.0, Fedora 7 and Mandriva 2007
Posts: 1,662

Original Poster
Rep: Reputation: 47
I want to send the public key to a keyserver.

Let us say I want to send to the following keyserver.

http://www.keyserver.net

I guess the following command is the correct one.

[root@c83-250-110-112 nissanka]$ gpg --keyserver search.keyserver.net --send-key gorky@outgun.com

Please tell me if I am wrong.


-----------------------------------------------------

I know the commad to armour the key. Is it necessary? I guess you don't have to do it if you just send to a public key server. Because anyone could go to a public key server and collect the key.

[root@c83-250-110-112 nissanka]$ gpg --armor --export gorky@outgun.com

I have a hunch that armouring means creating a file which has .asc at the end.
Please tell me whether it is necessary to armour the key.

Last edited by Gins; 08-15-2006 at 02:53 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
link dies intermittently-seemingly at random- between win<->linux not linux<->linux?? takahaya Linux - Networking 10 03-09-2007 10:37 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 11:01 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration