516 lines
22 KiB
HTML
516 lines
22 KiB
HTML
<!DOCTYPE html>
|
|
<html lang="en">
|
|
<head>
|
|
<meta charset="utf-8">
|
|
<meta http-equiv="X-UA-Compatible" content="IE=edge">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
<meta name="description" content="">
|
|
<meta name="author" content="">
|
|
<link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">
|
|
|
|
<title>How to use PGP encryption</title>
|
|
|
|
<!-- Bootstrap core CSS -->
|
|
<link href="../../assets/css/bootstrap.css" rel="stylesheet">
|
|
<link href="../../assets/css/xt256.css" rel="stylesheet">
|
|
|
|
|
|
|
|
<!-- Custom styles for this template -->
|
|
<link href="../../assets/css/main.css" rel="stylesheet">
|
|
|
|
|
|
|
|
<!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
|
|
<!--[if lt IE 9]>
|
|
<script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
|
|
<script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
|
|
<![endif]-->
|
|
</head>
|
|
|
|
<body>
|
|
|
|
<!-- Static navbar -->
|
|
<div class="navbar navbar-inverse-anon navbar-static-top">
|
|
<div class="container">
|
|
<div class="navbar-header">
|
|
<button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
|
|
<span class="icon-bar"></span>
|
|
<span class="icon-bar"></span>
|
|
<span class="icon-bar"></span>
|
|
</button>
|
|
<a class="navbar-brand-anon" href="\index.html">nihilist`s Blog</a>
|
|
</div>
|
|
<div class="navbar-collapse collapse">
|
|
<ul class="nav navbar-nav navbar-right">
|
|
|
|
<li><a href="/about.html">About</a></li>
|
|
<li><a href="/blog.html">Categories</a></li>
|
|
<li><a href="https://blog.nowhere.moe/donate.html">Donate</a></li>
|
|
<li><a href="/contact.html">Contact</a></li>
|
|
</ul>
|
|
</div><!--/.nav-collapse -->
|
|
|
|
</div>
|
|
</div>
|
|
|
|
<!-- +++++ Posts Lists +++++ -->
|
|
<!-- +++++ First Post +++++ -->
|
|
<div id="anon2">
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-8 col-lg-offset-2">
|
|
<a href="../anon.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>nihilist - 05 / 12 / 2022</ba></p>
|
|
<h1>How to use PGP encryption </h1>
|
|
<img src="0.png" style="width:250px">
|
|
<p>In this tutorial we're going to look at how to setup PGP keys, and use them to encrypt messages </p>
|
|
|
|
</div>
|
|
</div><!-- /row -->
|
|
</div> <!-- /container -->
|
|
</div><!-- /grey -->
|
|
|
|
<!-- +++++ Second Post +++++ -->
|
|
<div id="anon3">
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-8 col-lg-offset-2">
|
|
<h2><b>Initial Setup </b></h2>
|
|
<h3>Analogy</h3>
|
|
<p>Bob wants to send a sensitive message to Alice. Bob intends to send his sensitive message to Alice through various means, for example on Teams, Discord or even on Wickr. However Bob knows that these service providers will never respect his privacy, they will always spy on Bob's conversation:</p>
|
|
<img src="1.png" class="imgRz">
|
|
<p> Bob then decides that noone other than Alice will be able to decrypt his message. So, Bob decides to use PGP encryption, to be able to send a sensitive message to Alice <b>on any platform</b> he wishes, because he knows that only Alice will be able to decrypt it: </p>
|
|
</br>
|
|
<img src="2.png" class="imgRz">
|
|
<p>Why should you even care about PGP ? Simple, you only want one person to be able to read your message, so you use PGP. You can use it when you do not trust the chat platform you are using, or the email provider, or any other form of communication with text. PGP gives you a simple way of encrypting your messages with others' public key, so that way you're sure that noone can read your messages.</p>
|
|
<p>Let's begin by generating your first key: </p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --gen-key
|
|
gpg (GnuPG) 2.2.40; Copyright (C) 2022 g10 Code GmbH
|
|
This is free software: you are free to change and redistribute it.
|
|
There is NO WARRANTY, to the extent permitted by law.
|
|
|
|
Note: Use "gpg --full-generate-key" for a full featured key generation dialog.
|
|
|
|
GnuPG needs to construct a user ID to identify your key.
|
|
|
|
Real name: nihilist
|
|
Email address: nihilist@nowhere.moe
|
|
You selected this USER-ID:
|
|
"nihilist <<b></b>nihilist@nowhere.moe>"
|
|
|
|
Change (N)ame, (E)mail, or (O)kay/(Q)uit? o
|
|
We need to generate a lot of random bytes. It is a good idea to perform
|
|
some other action (type on the keyboard, move the mouse, utilize the
|
|
disks) during the prime generation; this gives the random number
|
|
generator a better chance to gain enough entropy.
|
|
We need to generate a lot of random bytes. It is a good idea to perform
|
|
some other action (type on the keyboard, move the mouse, utilize the
|
|
disks) during the prime generation; this gives the random number
|
|
generator a better chance to gain enough entropy.
|
|
gpg: revocation certificate stored as '/home/nothing/.gnupg/openpgp-revocs.d/89C359E4110050AA5BDDEA3E0284FFC275D0931B.rev'
|
|
public and secret key created and signed.
|
|
|
|
pub rsa3072 2022-12-05 [SC] [expires: 2024-12-04]
|
|
89C359E4110050AA5BDDEA3E0284FFC275D0931B
|
|
uid nihilist <<b></b>nihilist@nowhere.moe>
|
|
sub rsa3072 2022-12-05 [E] [expires: 2024-12-04]
|
|
|
|
</code></pre>
|
|
|
|
<p>Then we can list our keys like so:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --list-keys
|
|
/home/nothing/.gnupg/pubring.kbx
|
|
--------------------------------
|
|
pub rsa3072 2022-12-05 [SC] [expires: 2024-12-04]
|
|
89C359E4110050AA5BDDEA3E0284FFC275D0931B
|
|
uid [ultimate] nihilist <<b></b>nihilist@nowhere.moe>
|
|
sub rsa3072 2022-12-05 [E] [expires: 2024-12-04]
|
|
|
|
|
|
#to list the key fingerprint:
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --fingerprint nihilist@nowhere.moe
|
|
pub rsa3072 2022-12-05 [SC] [expires: 2024-12-04]
|
|
89C3 59E4 1100 50AA 5BDD EA3E 0284 FFC2 75D0 931B
|
|
uid [ultimate] nihilist <<b></b>nihilist@nowhere.moe>
|
|
sub rsa3072 2022-12-05 [E] [expires: 2024-12-04]
|
|
|
|
|
|
|
|
</code></pre>
|
|
|
|
<p>Now let's export our public key like so:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --output ~/nihilist.pubkey --armor --export nihilist@nowhere.moe
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ cat ~/nihilist.pubkey
|
|
-----BEGIN PGP PUBLIC KEY BLOCK-----
|
|
|
|
mQGNBGOOO2gBDADj/R45nL64Sew/i7QQo8LlxRPbdDCkEiy4zxVq3ryDAyAqZsB9
|
|
Nqd+LJxPOYQTbefWhKqgZgQIggJVtvfixmOfgzwvbIqAduAYL8MHh3sA0lYpBhLA
|
|
aJwRUicDzBJawJiEyd4GuddktfO3AhwKVlmI3bMtqdTn+px+vhCkz2L6r68Jf6LW
|
|
esJaql61+9t0zAQ83GROMEZv63ubvhnAr1SHfCVT0LxDZOjgBlyz6w90kSQMOjnT
|
|
dnFM/cK2iyuoynWghI3mlHHtkLmQP3bX2OMf1nwJjgRXK+xG/Sjv4qC5hlMAkQa4
|
|
P03QVxFVFgD0s0EiGgHNlWq/hFZfVs3J9+yxtGIu6RRxuXogTb9Hqvi6bbFA1RIB
|
|
SdJOqbgR+7c9tFOhC/HlMhjr6gggEjfaXgW3EOHW8nuGoj5KuhY6XArUGFvo5RxQ
|
|
yRz6BrnBSsAuS+wowxYIb0NTLDVa0wX+V36Ltqc8ODIMxF2hWceZ+uQm9NbKS/mm
|
|
meqwqyfvF/3UO2sAEQEAAbQkbmloaWxpc3QgPG5paGlsaXN0QG5paGlsaXNtLm5l
|
|
dHdvcms+iQHUBBMBCAA+FiEEicNZ5BEAUKpb3eo+AoT/wnXQkxsFAmOOO2gCGwMF
|
|
CQPCZwAFCwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQAoT/wnXQkxt28AwAnchT
|
|
3+AK5/9+Osfx9KC8ob3XWU2vJ9n7kELTUPYk88jy4uSxkK2Ho9DGwlEWexAVM7YD
|
|
tqcJ3TBMrUTZiJQNZimZAglBOlBdDLGS3QqinqEccppF554kLY5Y/Tktf1h1rL46
|
|
p9PPBdYZf4n4M0HCEWtzDc5SQbRnlMZq+qtEEpcJj9Eb8DGFPVHKVXfrInfPWr+A
|
|
MyVn/KZF79fAFLgDazNk2QBg2UAiW4gwJiOnb+nxFNcrGtY7b05zasC5f76s8nXc
|
|
qXVdg/QSM3BsCgXLssD4WxzZ1LiraZGJvtsI+H7EX/ih2B6DNJ7J80aIIjhOAeWt
|
|
g70rw8vG1x1KP3AKe11aqwbo+msF6/J8Fbl5vWgWWFIx0Sj+EUs43rVAQ++3sCpt
|
|
aE1bxgiX+zhtSujdqZUVCCfpKnSMy3js6WpRrpwezlwA4BIm2pHWymDqpGHq6iv1
|
|
jpqPAV5zufk4xEOE4gO9YILn0HF8O7fibseFZ8AJsyzbSkpp7NTzSbEAMT4AuQGN
|
|
BGOOO2gBDADAQWC3kbaiJNyyuSeIuHLd1vYx9h5fU5qxhMg0U29y0ydRbaWzGl04
|
|
E8s+oHD4EYtsbDHgBud+25Mizm9hmuuw/WkLvPvMOxCBgEunppJhFbOYefRgg4Yq
|
|
ufKIg8N0Vp0xx4o/yLDm+wxpc6rln2zhC7HK8pkaTyvJZtfQ5VoQgMcqsJ97hxwW
|
|
RxZgy0wVXfx+kAFKn8dG9jPzAMljIWC6QYzR4zgfAc9V3AIwePuA1BxWZ8fxwArY
|
|
CxBpZv+JCYS4JpEcAIfScfKNvF7mQEHVeqMjlvVtJRWTewYzCgjwZmGfOuAibiQV
|
|
ZwMttwuDJs2HMUMOUx2qDdFX85c9ucYL1BLNvpbL7lcppGwnw9wJCY8pOQPqKmpM
|
|
XMDuCn2h/QgWvqu3JP++rr0+55J2qMp7rKicOWhNNBT+gxs+hvSg5n6Or16XpzQu
|
|
HsDtz3P23vZwK1BVaWdp787BRXi8sIwqJhgeyzoEAlMvKN6l4RfjBLnOB1//TkjS
|
|
rghaSN+a51sAEQEAAYkBvAQYAQgAJhYhBInDWeQRAFCqW93qPgKE/8J10JMbBQJj
|
|
jjtoAhsMBQkDwmcAAAoJEAKE/8J10JMb2RAMAJftMsLskC02DxtboRXUwyOhcZz7
|
|
1toenEKo2xqa9dZ7XvSbrR5zsZ8mzJ0stj2tDZBqK7wFx+mL1+XownsAlL+YHn37
|
|
MsxMXvW9EaGXAeRVSQ3SFU8uulHbYgeUXUqlCkdpSgvDYcnO/bgSubS30Noead6N
|
|
0e0ysORO+tXPl1Hfx0Anje//y8ouKki94TP96NpRiL+J5yWrrqA+ZpCAYvMF5DpG
|
|
piOeAjYHyu2EIEyCc1VyTaAiolwUrukTaAXwySquYwUj6qOXElBprCvb/90nlEtH
|
|
+Rp4O2TIel4bPdegsBMO8H29r1ppxtYYM87uQHiSA7C5DjuAKLM4yLuMwUj+m1Wn
|
|
yh0JyQFCmjWuFaXNp0cTjWk7vwpeg6sKKfZ+Tn87uwkZAbOzA3Vfj0OqTmDxZHeA
|
|
AKsge1fp/a5jEYMXvGnZ64eX/2FYKfrOm/BIGqCkS+oTfmIaGqQOiAGlhUvdO+oY
|
|
5DG7X8sJauKPjhhHELWVrghx6GRTgjX9SLcZRQ==
|
|
=B+QD
|
|
-----END PGP PUBLIC KEY BLOCK-----
|
|
|
|
</code></pre>
|
|
<p>This can be put publicly on your website, so that users will be able to encrypt their messages before sending it to you.</p> </div>
|
|
</div><!-- /row -->
|
|
</div> <!-- /container -->
|
|
</div><!-- /white -->
|
|
|
|
<div id="anon2">
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-8 col-lg-offset-2">
|
|
<h2><b>Encrypt/Decrypt messages</b></h2> </br> </br>
|
|
<p> Now let's encrypt our messages with alice's public key after she generates her pgp keys:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --gen-key
|
|
gpg (GnuPG) 2.2.40; Copyright (C) 2022 g10 Code GmbH
|
|
This is free software: you are free to change and redistribute it.
|
|
There is NO WARRANTY, to the extent permitted by law.
|
|
|
|
Note: Use "gpg --full-generate-key" for a full featured key generation dialog.
|
|
|
|
GnuPG needs to construct a user ID to identify your key.
|
|
|
|
Real name: alice
|
|
Email address: alice@nowhere.com
|
|
You selected this USER-ID:
|
|
"alice <<b></b>alice@nowhere.com>"
|
|
|
|
Change (N)ame, (E)mail, or (O)kay/(Q)uit? o
|
|
We need to generate a lot of random bytes. It is a good idea to perform
|
|
some other action (type on the keyboard, move the mouse, utilize the
|
|
disks) during the prime generation; this gives the random number
|
|
generator a better chance to gain enough entropy.
|
|
We need to generate a lot of random bytes. It is a good idea to perform
|
|
some other action (type on the keyboard, move the mouse, utilize the
|
|
disks) during the prime generation; this gives the random number
|
|
generator a better chance to gain enough entropy.
|
|
gpg: revocation certificate stored as '/home/nothing/.gnupg/openpgp-revocs.d/2A4ACCAC38F55DEE59EA38CBCA761853B6A47483.rev'
|
|
public and secret key created and signed.
|
|
|
|
pub rsa3072 2022-12-05 [SC] [expires: 2024-12-04]
|
|
2A4ACCAC38F55DEE59EA38CBCA761853B6A47483
|
|
uid alice <<b></b>alice@nowhere.com>
|
|
sub rsa3072 2022-12-05 [E] [expires: 2024-12-04]
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --output ~/alice.pubkey --armor --export alice@nowhere.com
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ cat ~/alice.pubkey
|
|
-----BEGIN PGP PUBLIC KEY BLOCK-----
|
|
|
|
mQGNBGOOPtABDAC2i7v3qZFdhxnyGOcDlOSoJGijMKW45YgrxGKwvi80m8x76yOE
|
|
CsNiVPsZB+DNWzbKtzZqqzOB2dJPQlEtvivd5Sg9Qn35D24kkb17k1WsIRZX8ZtW
|
|
GPZKckIrjHNjeTnOMN14Fa6qr6jXtIgXKewGGh1w4Vv8CDfquTmuvQ462k05i2cQ
|
|
m0oIPCG5nuOQvFg3nLJF9ZAKspXcZ/FzowBUbQFpCfFmYsDEBWpUSEGZvzTV/t2L
|
|
Hp1AqxTze8DU1ll0rH7TxMnXNVG+gSRkloJfUxp6GCKKjiTmXiQxLQesbb2lcPON
|
|
EY5tcoSuntV7tLvz6Fcfqs71aEQLZ7lr6l546GARBJ+gnKTMro7RZd+mc4ICncGg
|
|
wZQ/k5I5XU7fdZUNFZWI4vP502fWJOF0XM16mNLs4kTKCfg1XFtBjC0t0MZWoE2x
|
|
AtvpGZyC6jWrDeH7m2Bg9guOvNWOl5HkH9ak6zR3NpNotyOpVgcVe1mSCLdK/Ewm
|
|
uI9dKWDyFI7B3C0AEQEAAbQZYWxpY2UgPGFsaWNlQG5vd2hlcmUuY29tPokB1AQT
|
|
AQgAPhYhBCpKzKw49V3uWeo4y8p2GFO2pHSDBQJjjj7QAhsDBQkDwmcABQsJCAcC
|
|
BhUKCQgLAgQWAgMBAh4BAheAAAoJEMp2GFO2pHSDzsoMAJCn3B+tB6h9IhUubGSt
|
|
c8A7C3E2dEgzXKAcQs3qSvRpjJys6csAVdbsdJ8aGYIxT9u3ta4c7Xtq0CkJLkB4
|
|
sqpNMb9r6wHt/Q08EGR0fAVzZ/FspiLeROQZRmFEUJRbKj9og9b0zSH5+dA5Adv2
|
|
oIakqUeRIK2VeELQkQE+SnzMfiI2IQ55MdsCKG1UwN35E+x/st8tfzrhv24SM63x
|
|
sg5fQ1XWuPY6xOD1+DEkKCyPJlKSj6s2R1MFWp5aSH+29tp0ScGAypY7XnQ5kbyW
|
|
p99BWyTqub4FZw6P4VEJGFep2AabTHAzJrRrQ7kdzSWABUsfrmXfjeAk16AnuACa
|
|
4sDow1cpW85XTm7W+dE4RV2y7WMuvSAaZfHv9iJwDYgc99t0HdrlNmEnNX4j82ET
|
|
TOD9V1WrbwPtacl9Iojv5MR+hVIlvVD1WEziJiChflJjqRWjZVo+C6xoAS5GojQv
|
|
PX2nBOtzSqyjlTBzFwKw/Och+7JYXDvmUmlmaE8pBXFw+LkBjQRjjj7QAQwA6Kuy
|
|
0rDgRSLKl5WRa6kr9xZ2UBvuDN+RHqXXWFBM6xKox4Q88/AGR2wcsjkKOJ0fpNX9
|
|
ISOexORtWO10WcK+KsTAZjLSBzUJhTok8o2sKGACWPZLW4ZoqJtMq24wAW7YBwNG
|
|
WWuFW8shdu/oxQ/UuaLPqR/b9YJmry9c/WR72kC3USwoZS8he8lEl550DzQsa+If
|
|
lODLAvk5mXfPsxTpvfT+gJvBz+50FWPz1LVOWBQiwcK6dJdKvux3bp30GhvOCR7K
|
|
R6U3ZP37idNc8wtg7cybJhKh01HB/Na7dnLEQAE9pqKFzm6aYwwsnD8Q7Co0LNrv
|
|
J9YsTZ68onpF7Yb5Ndlmi/h/sOIB3J4yhfaX4JiwBzltiyhXwaRtBG8I9+DRr/1c
|
|
Gkga08WfTFvNGjajf52nCJqxtJeb7Mjyr6w9MKBSq+/+yKb4yJSjTXryKfLS5S4l
|
|
Mb23Wss9cucDe6XCncUo8ukJakAUdLJsnoxj10J6Nk9EPIJFi3bLmv40aeRjABEB
|
|
AAGJAbwEGAEIACYWIQQqSsysOPVd7lnqOMvKdhhTtqR0gwUCY44+0AIbDAUJA8Jn
|
|
AAAKCRDKdhhTtqR0gyigC/9XSrbStJlQQWg3cq+XFokGv+fP0Bl3y+wVNzyL2Twc
|
|
R70g/NqS2q5Ztd9bq5SleYn94n2tc5zULnuc5TUeVF303goFxsFQcjVQpe+vw6BA
|
|
IcL+VdAvu4UQRVBCzUeW6Jd5n1oemIsyhdET40PRT5UTOwpdpoQQRvdHs2XCGR1q
|
|
FMkbyxDg444lUzYD1l655yhwN9b7YHWA6Eih5tyIeBxZDXA586M8TGrCfzC67g0f
|
|
bkp/pmA5xH7nxMHAR+A9sC/r1RW41qZ9Or6Wbqyrbyt7Whknoz0sCfm41MEUSkeF
|
|
lS4EdjbGtEFzbpZGCs3FwH0kQdHl0nczyYnblBpmNccq5aPC6xhOj1FiBktoaqD0
|
|
J0f4srQ8RZpPaRJo6ZD1JzSyKDLtQ/oZES741Fgi2UAfxBXslRktq/0J5ehJww3Q
|
|
YWu3a5PAJWX6wkutFKp4eswvBr8na53CX4w2DF3hizl5w2+hff9gk8Qvrq77D3ht
|
|
CdIDJHjajZtj14jc+uBRMMc=
|
|
=up53
|
|
-----END PGP PUBLIC KEY BLOCK-----
|
|
|
|
</code></pre>
|
|
<p>So let's first import alice's public key like so:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --import alice.pubkey
|
|
gpg: key CA761853B6A47483: "alice <alice@nowhere.com>" not changed
|
|
gpg: Total number processed: 1
|
|
gpg: unchanged: 1
|
|
|
|
</code></pre>
|
|
<p>In order to make sure this is alice's public key, check the fingerprint of it:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --fingerprint alice@nowhere.com
|
|
pub rsa3072 2022-12-05 [SC] [expires: 2024-12-04]
|
|
2A4A CCAC 38F5 5DEE 59EA 38CB CA76 1853 B6A4 7483
|
|
uid [ultimate] alice <<b></b>alice@nowhere.com>
|
|
sub rsa3072 2022-12-05 [E] [expires: 2024-12-04]
|
|
|
|
</code></pre>
|
|
<p>Once you're sure that it is alice's public key, you can "sign it", which basically means that you trust that key:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --sign-key alice@nowhere.com
|
|
|
|
sec rsa3072/CA761853B6A47483
|
|
created: 2022-12-05 expires: 2024-12-04 usage: SC
|
|
trust: ultimate validity: ultimate
|
|
ssb rsa3072/7A75B89E1AA090CF
|
|
created: 2022-12-05 expires: 2024-12-04 usage: E
|
|
[ultimate] (1). alice <alice@nowhere.com>
|
|
|
|
|
|
sec rsa3072/CA761853B6A47483
|
|
created: 2022-12-05 expires: 2024-12-04 usage: SC
|
|
trust: ultimate validity: ultimate
|
|
Primary key fingerprint: 2A4A CCAC 38F5 5DEE 59EA 38CB CA76 1853 B6A4 7483
|
|
|
|
alice <alice@nowhere.com>
|
|
|
|
This key is due to expire on 2024-12-04.
|
|
Are you sure that you want to sign this key with your
|
|
key "nihilist <nihilist@nowhere.moe>"
|
|
|
|
Really sign? (y/N) y
|
|
|
|
</code></pre>
|
|
<p>From there we can encrypt our message.txt:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ vim message.txt
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ cat message.txt
|
|
this is my very secret message !
|
|
|
|
</code></pre>
|
|
<p>Before encrypting it, we can also sign it, although it is optional. There are 3 ways to sign the message:</p>
|
|
<pre><code class="nim">
|
|
Create binary or ASCII-armored detached signature from input
|
|
--detach-sign
|
|
|
|
Wrap input in plaintext signature
|
|
--clearsign
|
|
|
|
Encode input into binary or ASCII-armored output with an integrated signature
|
|
--sign
|
|
|
|
</code></pre>
|
|
<p>To sign the message while also remaining in plaintext, we use the second option --clearsign (also, if you have multiple private keys like me, choose it with the -u flag to specify who is sending the message):</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg -u nihilist@nowhere.moe --clearsign message.txt
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ cat message.txt.asc
|
|
-----BEGIN PGP SIGNED MESSAGE-----
|
|
Hash: SHA256
|
|
|
|
this is my very secret message !
|
|
-----BEGIN PGP SIGNATURE-----
|
|
|
|
iQHOBAEBCAA4FiEEicNZ5BEAUKpb3eo+AoT/wnXQkxsFAmOOR1waHG5paGlsaXN0
|
|
QG5paGlsaXNtLm5ldHdvcmsACgkQAoT/wnXQkxubCwwAgxB2JIFz/vSewL0ScF1i
|
|
K307GR4mNIyMy3VRgtuVdONau4X8p68tRS+wqoVRFB8GDLXTkzJsaULwghm8RQaV
|
|
x0NOx60kgmXckP00uQM+ySDRqpHoVb5HYRqPrbOhJ6L1AFnexyhuhclvQoS4Zm0e
|
|
PkvcMFaWOevQnbS8Vh2fVby4fsq5YdzSig4mu6KjQeR+Gu29xkAJp+lgMT1Ia0pL
|
|
DVZaUw+AVHyaeQzdokdw0eoU01gl+dzPyaPamAGTbqI5Z7+DMOMgtgC9cpPP+26F
|
|
jTpmq7fFxQ3fpAbEIlcahZzNBSyd1QGu6uKs/V4hqx4Fj7qg4puq+raxgg0JlyEZ
|
|
greVnUYBONlTTIDgIKqI8D5iFhW6cCHQzXvYjLqCCuY35ZHP0TRkSycZaNjO1/4/
|
|
EaNNvLm/uzi3+HhvPW57a9+bcGiVvTLhhje8sVUxioDd36DA4fYkd8BqBNkYvjRa
|
|
e/D6QxqcdeK/RM0tUdlEsypp0KV3musGbyrYRhycEQPF
|
|
=GuJm
|
|
-----END PGP SIGNATURE-----
|
|
|
|
</code></pre>
|
|
<p>The signed message is saved as "message.txt<b>.asc</b>", now let's encrypt it using alice's public key, and also don't forget to encrypt it with the private key you want with the -u flag again:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg --encrypt --sign --armor -u nihilist@nowhere.moe -r alice@nowhere.com message.txt.asc
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ ls -lash | grep message
|
|
4.0K -rw-r--r-- 1 nothing nothing 33 Dec 5 19:03 message.txt
|
|
4.0K -rw-r--r-- 1 nothing nothing 741 Dec 5 19:13 message.txt.asc
|
|
4.0K -rw-r--r-- 1 nothing nothing 2.2K Dec 5 19:14 message.txt.asc.asc
|
|
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ cat message.txt.asc.asc
|
|
-----BEGIN PGP MESSAGE-----
|
|
|
|
hQGMA3p1uJ4aoJDPAQwAmziBMlZIwlbmvLlVuBiux76xliI2CVthnlHRZGPwghgY
|
|
yBPCOHpfZUX3M44vO9/ONVurA8/u5vgxwDZZxCOfYUHiJbI2iW6+Pmp/opF0fKa9
|
|
gsArICw2YwyJ3uH+AmpYQ9mlDXs1MFFfUuV/4uIh0QFJshuGNHl5ahdLd7AlyrW2
|
|
U63BibwpqTqZLH/4rsbKtZ4isJPL4ZcHhymSdel+fy+N5wy11HZt8QJrwyUUbWHB
|
|
jHbwgDJ2HKP6Yvf0etiMWEeEyjnsjQVdPI7CqO4l12k7+s78dde9RCN1I/R53Jiy
|
|
HUO2Wd6m68REIL3S6o0jwWxeQZMyW9PAMIArKWPWYUCkR9uxC1yKoiu/sYv7zf1Y
|
|
TtwAMExTfzyCogD0TvVcahSgbBUjLfHpe7MFLrSKugpb8pgMszBxVrvnKbYbVVRc
|
|
x090o+pE0TCAf+s4IOUtnzYZjesvYkW16psKS7O1ZWbF6LGyDm92en6I377drEoc
|
|
x4WytIkoDtV+L3qHP6wA0uoBp8aieGsvyHmgQvVbXgbYQE2Z3yDoCWuJGAy0MRpK
|
|
xg/zz8vwsr1QEIxutT3T9MqO9d/zXxi8S8B4lIxoiI3HcHff8pnn3B1ok1Yl+tCz
|
|
5ns0kBWPLobMta5J5QdxEJDqJTBLna9Npk08YkNXIVgU8Kd+EkvrYH8jrKJLDyis
|
|
FfvRGZwTeWto6t4q4W4z/hEzSwXmuTICYKkThc17Hs5LX5WwMPo4W/LaB4VidOi7
|
|
I7wXkFEgw/l/lFk3MAq8eq1ZKCZ/adsxlOy+xsT8WM7va7l+gtyT4EU5JcAklLgh
|
|
8m+R6rqdc34eCnKjtilhZ8jSsiij/hXzeSYs1uNCRcHylRJ57hLiQWwqlFCenBBT
|
|
Zjj4uY09RkXXn2LCCMdIrhpF9oLV+vDep9PD61qMqacGnOSYAI7jPHRqlxMe6GWu
|
|
h/Elip+h8Cujek5rUa0y8z+vdeGBaEoz27QV8PsuEw9JeXkcwCwm5rt165bvG5Fq
|
|
2RHV7/glS42JLKmb1ru1dxZ2gYUDomghkWNTm1ycPS3mR2BIKBieEmgpdm8Gn4hL
|
|
UDrBQYLBdlJ0XQOb5tp4V/hHHx2Z9FpEAWz6U2uRBHf7b7EmJH0x0o95E4CpgX6k
|
|
+Gcx6CkNrpdMfyaL7sFUV58tyQzpfffRHFvZ3Q3waMRFwhd6rCzFVTrsdHyIMrJH
|
|
gD7Qrn69sy38KK0ndUuSzuY9oTMPp7Suze8bKjQ3IRC9/vuzoGYpJT0lYaVcAu5I
|
|
yNWOGI2i2VreDQoUXTS76AosuznyATpTgpgj5dBb4/2myhBvYYNC5dvHBlTECaCI
|
|
wa8MTuv8yhGlXhG2dxgQrNzM3SVw3w9ESD4oynvhjVEiHYCq4zRfXEeAwNJUYVjA
|
|
uS0ZESLdVKTabqofkL50w2M7RmMeV131DRLnW+5DogsCHVw9x2wWSF00u0ruS2CF
|
|
GNSg3MdNMEPopP43MoL6eZ2kIayvg2QW0Lgu6jcWjDg5Xwt/X605u6le4R7rq1O1
|
|
xP8QItSAapu1pKQ3lP/t/FUeA+PEtOSlRtPQLg+k4lgyM9/sev8wT3JhqtLne7w3
|
|
4Qb8boNeXSQqT/+ZJmi4blOK8gGe0XPoYJmwiuCiRzDCbzHEgMl8b31uTbTjj261
|
|
b8DqU+WmJo2bzDfFmbOiDDhJ/Fd+Bv71wFeCZyCKvhWnpN5vu/WJudP/jRQOoWq4
|
|
B01LYEfmH2iQcT2My8bmiy7hUDPX82sApkDgSGn5DGwKo+MIcQ0lAMqfUbh9JMzl
|
|
P3PQ9m8AU3nJxm8ONeujONlpNGJl2T0TA6XDIB8OxYPkR37oCUlK8LXv4Kg0sN40
|
|
+hpc+7J8Mxuxd9KlneyWlSvf7zlBc0B7bOCGGwMlkg+zwBJmsUBWE+PfMeZscWGx
|
|
JbvFxIkku+4mY/Z1ENdTwdwvW5ffW71V2PLK54iX3fMrP0TEUtv4kXmTYS5HbwNs
|
|
CXvia2UNZAre/1ZpqsMoHmXxYduddawIYc61jDZyWAq/C2XTOyqyseiwFgPqVNnc
|
|
E5SMO6iUHZ89Eb+bWmRhSUeFhytKXcmDkNaoK/IZ9GnaEX0XVfk/Ge8VWx9prtLs
|
|
a2G4PbtX3KEPCYjqS2N2HDPUEqGVgGVdSqeya2J/SeoEcdpOqTIJu+KT+iDyeIGM
|
|
B8xjrEs=
|
|
=kY62
|
|
-----END PGP MESSAGE-----
|
|
|
|
</code></pre>
|
|
<p>The encrypted message is created as "message.txt.asc<b>.asc</b>", so now we can send it to alice anywhere (teams, gmail, outlook, protonmail), wherever you want, <b>because only alice will be able to decode the message.</b> Once alice retrieves the message.txt.asc.asc she can decrypt it like so:</p>
|
|
<pre><code class="nim">
|
|
[ 10.8.0.3/24 ] [ nowhere ] [~]
|
|
→ gpg -d message.txt.asc.asc
|
|
gpg: encrypted with 3072-bit RSA key, ID 7A75B89E1AA090CF, created 2022-12-05
|
|
"alice <<b></b>alice@nowhere.com>"
|
|
-----BEGIN PGP SIGNED MESSAGE-----
|
|
Hash: SHA256
|
|
|
|
this is my very secret message !
|
|
-----BEGIN PGP SIGNATURE-----
|
|
|
|
iQHOBAEBCAA4FiEEicNZ5BEAUKpb3eo+AoT/wnXQkxsFAmOOR1waHG5paGlsaXN0
|
|
QG5paGlsaXNtLm5ldHdvcmsACgkQAoT/wnXQkxubCwwAgxB2JIFz/vSewL0ScF1i
|
|
K307GR4mNIyMy3VRgtuVdONau4X8p68tRS+wqoVRFB8GDLXTkzJsaULwghm8RQaV
|
|
x0NOx60kgmXckP00uQM+ySDRqpHoVb5HYRqPrbOhJ6L1AFnexyhuhclvQoS4Zm0e
|
|
PkvcMFaWOevQnbS8Vh2fVby4fsq5YdzSig4mu6KjQeR+Gu29xkAJp+lgMT1Ia0pL
|
|
DVZaUw+AVHyaeQzdokdw0eoU01gl+dzPyaPamAGTbqI5Z7+DMOMgtgC9cpPP+26F
|
|
jTpmq7fFxQ3fpAbEIlcahZzNBSyd1QGu6uKs/V4hqx4Fj7qg4puq+raxgg0JlyEZ
|
|
greVnUYBONlTTIDgIKqI8D5iFhW6cCHQzXvYjLqCCuY35ZHP0TRkSycZaNjO1/4/
|
|
EaNNvLm/uzi3+HhvPW57a9+bcGiVvTLhhje8sVUxioDd36DA4fYkd8BqBNkYvjRa
|
|
e/D6QxqcdeK/RM0tUdlEsypp0KV3musGbyrYRhycEQPF
|
|
=GuJm
|
|
-----END PGP SIGNATURE-----
|
|
gpg: Signature made Mon 05 Dec 2022 07:34:36 PM UTC
|
|
gpg: using RSA key 89C359E4110050AA5BDDEA3E0284FFC275D0931B
|
|
gpg: issuer "nihilist@nowhere.moe"
|
|
gpg: Good signature from "nihilist <<b></b>nihilist@nowhere.moe>" [ultimate]
|
|
|
|
</code></pre>
|
|
<p>Once decrypted, she can see that the message has our PGP signature.</p>
|
|
<img src="3.png" class="imgRz">
|
|
<p>And that's it! That covers the basics of how to use PGP</p>
|
|
|
|
|
|
</div>
|
|
</div><!-- /row -->
|
|
</div> <!-- /container -->
|
|
</div><!-- /white -->
|
|
|
|
<!-- +++++ Footer Section +++++ -->
|
|
|
|
<div id="anonb">
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-4">
|
|
<h4>Nihilism</h4>
|
|
<p>
|
|
Until there is Nothing left.
|
|
|
|
</p>
|
|
</div><!-- /col-lg-4 -->
|
|
|
|
<div class="col-lg-4">
|
|
<h4>My Links</h4>
|
|
<p>
|
|
|
|
<a target="_blank" rel="noopener noreferrer" href="http://blog.nowhere.moe/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="https://matrix.to/#/#nihilism:m.nowhere.moe">Matrix Chat</a><br/>
|
|
|
|
</p>
|
|
</div><!-- /col-lg-4 -->
|
|
|
|
<div class="col-lg-4">
|
|
<h4>About nihilist</h4>
|
|
<p style="word-wrap: break-word;"><u>Donate XMR:</u> 8AUYjhQeG3D5aodJDtqG499N5jXXM71gYKD8LgSsFB9BUV1o7muLv3DXHoydRTK4SZaaUBq4EAUqpZHLrX2VZLH71Jrd9k8</p></br><p><u>Contact:</u> nihilist@nowhere.moe (<a href="https://nowhere.moe/nihilist.pubkey">PGP</a>)</p>
|
|
</div><!-- /col-lg-4 -->
|
|
|
|
</div>
|
|
|
|
</div>
|
|
</div>
|
|
|
|
|
|
<!-- Bootstrap core JavaScript
|
|
================================================== -->
|
|
<!-- Placed at the end of the document so the pages load faster -->
|
|
|
|
</body>
|
|
</html>
|