gnupg | 易学教程

visualize the GnuPG web of trust

阅读更多关于 visualize the GnuPG web of trust

问题 Is there some way to visualise the GnuPG web of trust? With my (or any other) key in the middle, with the signed keys in the first circle, the trustpersons' trustpersons in the next and so on? If there is nothing like that, I should be able to build something like that based on the key signatures from my lokal keyring, right? 回答1: One approach is to convert the output of gpg --list-sigs to a dot file that can be rendered into a graph with the graphviz tools. Use gpg, sig2dot, and dot like

JavaScript: Decrypt content of GnuPG encrypted files using openpgp.js

阅读更多关于 JavaScript: Decrypt content of GnuPG encrypted files using openpgp.js

I'm trying to write a sample decryptor for GnuPG encrypted files in JavaScript using openpgp.js . So I tried it naively without even asking if it is even possible. I made the following page. popup.html <!doctype html>  <html> <head> <title>Popup</title> <script src="openpgp.js"></script> <script src="popup.js"></script> </head> <body> <p>Upload message: </p><input id="message" type="file"/><br> <p>Upload secret key: </p><input id="secret" type="file"/><br> <p>Secret key password: </p><input id="password" type="password"/><br><br> <button id="decrypt">Decrypt</button> <p id="output"></p

How to use gpg command-line to check passphrase is correct

阅读更多关于 How to use gpg command-line to check passphrase is correct

问题 I am trying to automate backups with duplicity , but when I test the result, I get gpg: public key decryption failed: bad passphrase I want to check whether the passphrase I am using is actually the passphrase associated with the corresponding gpg secret-key, but I can't see anyway in the gpg command-line options to say "Don't encrypt or decrypt anything. Just confirm I am using the right passphrase." This suggests that maybe I am (yet again) misunderstanding Gnu Privacy Guard. (It has a

GnuPG: How to encrypt/decrypt files using a certain key?

阅读更多关于 GnuPG: How to encrypt/decrypt files using a certain key?

Long story short, my question is: How can I force GnuPG which private/public key to use when encrypting/decrypting files? Some explanation / Long story I have an application that must encrypt files before sending them to S3. Users can download their files using their browsers from my website, in which case I must first decrypt the files before serving them. Client side ( delphi 2010 ): I'm most likely going to opt for OpenPGPBlackbox Server side (PHP 5), I need to figure out how to encrypt/decrypt files with non-interactive commands. I installed GnuPG on my server, tried this code: clear_file=

How to generate gpg signing keys in bintray for jcenter in windows

阅读更多关于 How to generate gpg signing keys in bintray for jcenter in windows

I am unable to get GPG signing keys. Please any one tell me. Thanks How to generate gps signing keys in windows for jcenter Windows users can generate GPG keys using GPG4Win . There are many tutorials available, for example this one . For Linux/Mac you can use gpg . I learned how to do this here . I needed to prefix the following commands with sudo . Generate the keys gpg --gen-key Follow the defaults but enter your name and email and optionally a password. List the keys. gpg --list-keys which should show something like this: pub 2038R/91E83BF2 2017-05-13 uid Bob <name@example.com> sub 2038R

Calling GnuPG in Java via a Runtime Process to encrypt and decrypt files - Decrypt always hangs

阅读更多关于 Calling GnuPG in Java via a Runtime Process to encrypt and decrypt files - Decrypt always hangs

问题 NOTE: Coming back to this later as I've been unable to find a working solution. Draining the input streams manually instead of using BufferedReaders doesn't seem to help as the inputStream.read() method permanently blocks the program. I placed the gpg call in a batch file, and called the batch file from Java to only get the same result. Once gpg is called with the decrypt option, the input stream seems to become inaccessible, blocking the entire program. I'll have to come back to this when I

GPG - decrypt with multiple recipients

阅读更多关于 GPG - decrypt with multiple recipients

问题 I am trying to decrypt a file that has been encrypted using 2 recipients (--recipient recipientA@example.com --recipient recipientB@example.com). However when I try to decrypt the file, it always requests the passphrase of the 1st recipient. When the 1st recipient secret-key isn't part of the key-ring, it will give an error 'secret key not found'. How can I encrypt a file with multiple recipients so that both can decrypt them without knowing eachother keys & passphrases? (To me, the question

Choose which secret key to use when doing a gpg --encrypt --sign

阅读更多关于 Choose which secret key to use when doing a gpg --encrypt --sign

I have multiple secret keys in my GPG keyring. I'd like to do a gpg -e -s -a to encrypt, sign, and ascii armor the output. However, I also need to specify which secret key to use for the signature, by key id. I needed the --local-user option. gpg -e -s -a --local-user 0xDEADBEEF -r 0x01234567 来源： https://stackoverflow.com/questions/9624384/choose-which-secret-key-to-use-when-doing-a-gpg-encrypt-sign

PGP: Not enough random bytes available. Please do some other work to give the OS a chance to collect more entropy

阅读更多关于 PGP: Not enough random bytes available. Please do some other work to give the OS a chance to collect more entropy

问题 Setup : Ubuntu Server on Virtual Machine with 6 cores and 3GB of RAM. when I am trying to generate a asymmetric key pair via GPG like this gpg --gen-key . I get the following error : Not enough random bytes available. Please do some other work to give the OS a chance to collect more entropy! I tried to google a little bit. This is what I realise , I need to fire up another terminal and type in cat /udev/random --> It randomly generates a series of randomly generated values to increase the

Using BouncyCastle with GnuPG 2.1's `pubring.kbx` file

阅读更多关于 Using BouncyCastle with GnuPG 2.1's `pubring.kbx` file

I'm trying to use BouncyCastle with PGP2 to read public keys ring. The problem is that since GnuPG 2.1 it's stored in pubring.kbx instead of pubring.gpg . That leads to IOException public key ring doesn't start with public key tag: tag 0x0 Any idea if and how I can use BC with GnuPG 2.1? Jens Erat GnuPG 2.1 by default uses the new keybox file format -- if no pubring.gpg is found. If there is a "legacy" keyring file, it will be used instead. I'm not aware Bouncy Castle supports the .kbx file format. So if you want to use Bouncy Castle together on the same key files GnuPG is using, you've got