Questions tagged [gnupg]
GNU Privacy Guard (GnuPG or GPG) is an open source implementation of PGP, a file encryption and signature tool widely used for emails
801 questions
3
votes
0
answers
74
views
Import and show expired gpg certification signatures?
I would like to import a gpg key that has expired cross signatures and be able to see those expired signatures with --list-sigs or --check-sigs. Gnupg seems to always filter them out however.
How can ...
- 1,790
7
votes
3
answers
2k
views
Using public-key crypto for all HTTP requests of a session – bad idea?
I’m interested in using public-key cryptography for stateless authentication on websites.
The current authentication standard is email + password. Passwords are bad because they can often be guessed, ...
- 305
3
votes
1
answer
163
views
How to migrate an OLD Yubikey with an OLD PGP key to a NEW Yubikey with a NEW PGP Key? Cross-signing, certifying, etc
A few years ago, I set up my Yubikey with PGP by following Dr.Duhs Yubikey Guide.
I created an offline Certify key / Master key on a live usb distro, and then created the corresponding sub keys (S,A,E)...
- 141
2
votes
1
answer
129
views
Gpg key management - lost / forgotten keys
In my current pubring.kbx I found an old secret key with no expiry date set and its subkey, for that I have forgotten the passphrase. In the same file I have another better maintained key.
I tried to ...
- 121
2
votes
0
answers
147
views
GPG: importing a friend's signature on my public key demotes "ultimate" to "full"
This may be a newbie question. A friend ("Bob") and I have tried to sign each others' keys according to these instructions. I want to get Bob's signature on my public key into my own ...
1
vote
0
answers
104
views
GPG: How to clean/refresh the cache involved with the "pubring.kbx" file?
About GPG and for the kbxutil command in the following page:
14.1.1 Scrutinizing a keybox file
Has the following part
To see statistics on the keybox in question, run it using
‘kbxutil --stats ~/....
- 219
0
votes
2
answers
174
views
GPG: What is the file that represents the "secret keyring" concept?
About GPG and keys
Each public key is stored in the ~/.gnupg/pubring.kbx file (correct me if it is not correct)
Each public key normally has a pair of secret keys stored in the ~/.gnupg/private-keys-...
- 219
0
votes
1
answer
114
views
Restrict gpg from decrypting a file encrypted by a subkey which is now expired or revoked [duplicate]
GPG allows file encryption for multiple recipients. I prefer to encrypt files:
Only to recipient subkeys shared with me by the intended recipients, like so:
$ gpg --encrypt --armor --recipient <...
1
vote
1
answer
88
views
GPG: Where and what is the official documentation about the reporting structure for the gpg command?
when the following command is executed successfully:
gpg --full-gen-key
About the output as follows:
Change (N)ame, (C)omment, (E)mail or (O)kay/(Q)uit? O
We need to generate a lot of random bytes. ...
- 219
2
votes
1
answer
116
views
GPG: trying to understand about of public and secret keys
Introduction
In SSH can be created a pair of keys as follows for example:
id_rsa
id_rsa.pub
Where the first one is the private and the second is the public.
Where both:
Are located in the ~/.ssh ...
- 219
3
votes
1
answer
548
views
GPG: Why the "gpg --expert --full-gen-key" command does not show all the "kind of keys"?
For Debian 12 and Ubuntu Desktop 22.04 when is executed the following command:
gpg --full-gen-key
gpg (GnuPG) 2.2.40; Copyright (C) 2022 g10 Code GmbH
This is free software: you are free to change and ...
- 219
0
votes
0
answers
179
views
GPG: Why "pubring.kbx" contains keys I removed?
With VirtualBox is installed as guest Ubuntu Desktop 22.04.5 LTS x86_64
About gpg
gpg --version
gpg (GnuPG) 2.2.27
libgcrypt 1.9.4
...
Home: /home/manueljordan/.gnupg
To remove some keys, I executed ...
- 219
1
vote
0
answers
88
views
Managing SSH authorized keys exported from OpenPGP keys
One of the benefits of using OpenPGP authentication subkeys instead of arbitrarily created SSH keyfiles, is key expiration and revocation.
While there is plenty of documentation on how to use OpenPGP ...
- 11
1
vote
1
answer
261
views
Restored GPG keys are invisible
I did an rsync -a backup of ~/.gnupg and an ensuing restore using the same method:
$ ls -l ~/.gnupg/private-keys-v1.d/
total 24
-rw------- 1 dustin dustin 3789 Jul 22 00:01 ...
- 119
2
votes
1
answer
359
views
Explaining output of GPG --export/--export-private-key key_id vs key_id!
I am a newcomer to GPG, and wanted to compare different ways of exporting keys, so I wrote the following shell script:
#!/bin/bash
for key in "FE..." "17.." "BB.."; do # ...
- 123