Welcome to the most active Linux Forum on the web.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 09-16-2010, 03:55 AM   #1
Registered: Oct 2004
Location: India
Distribution: FC 12
Posts: 233

Rep: Reputation: 30
Self signed public key (GPG)

Hello folks,

The following is reproduced from the GPG Manual:

When you distribute your public key, you are distributing the public components of your master and subordinate
keys as well as the user IDs. Distributing this material alone, however, is a security risk since it is possible for an
attacker to tamper with the key. The public key can be modified by adding or substituting keys, or by adding or
changing user IDs. By tampering with a user ID, the attacker could change the user IDís email address to have
email redirected to himself. By changing one of the encryption keys, the attacker would also be able to decrypt
the messages redirected to him.
Using digital signatures is a solution to this problem. When data is signed by a private key, the correspond-
ing public key is bound to the signed data. In other words, only the corresponding public key can be used to
verify the signature and ensure that the data has not been modified. A public key can be protected from tamper-
ing by using its corresponding private master key to sign the public key components and user IDs, thus binding
the components to the public master key. Signing public key components with the corresponding private master
signing key is called self-signing ....
After generation of they key by - gpg --gen-key - how can one go about putting in a self-signature on the public key.

Thanks in advance.

Prabhat Soni
Old 09-16-2010, 10:54 PM   #2
Registered: Aug 2007
Location: Vietnam
Distribution: RedHat based, Debian based, Slackware, Gentoo
Posts: 724

Rep: Reputation: 101Reputation: 101
Originally Posted by prabhatsoni View Post
After generation of they key by - gpg --gen-key - how can one go about putting in a self-signature on the public key.
gpg -ea -r <recipient> file

recipient = <key_name> or email
Old 09-16-2010, 11:18 PM   #3
Registered: Mar 2008
Posts: 21,240

Rep: Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451Reputation: 3451
I deliver the key in person.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
GPG error, no public key pr5439 Ubuntu 8 08-12-2009 11:32 AM
GPG encrpyted -- signed by which key? prn Linux - Security 2 03-13-2008 01:53 PM
Revoking GPG key with only passphrase and public key djib Linux - Security 2 03-13-2007 04:20 AM
yum public gpg key?? Niflheim Fedora 1 03-28-2005 02:46 PM
GPG Data, Secret Key but no Public Key? Aeiri Linux - Software 5 07-20-2004 07:00 PM > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 07:35 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration