Post Your Public Keys

Everything about it! Heard the news? What! is Ubuntu bankrupt? Has Mandriva started marketing? Have you taken a sky diving course?
We just need to know! No flaming! And we hate spammers -Get it?

Moderators: b1o, jkerr82508

User avatar
Snorkasaurus
Berserk
Posts: 587
Joined: 30 Dec 2013, 19:19
Contact:

Re: Post Your Public Keys

Postby Snorkasaurus » 09 Sep 2015, 18:43

For Linux there are lots of alternatives. :s
s.

User avatar
dedanna1029
Sound-Berserk
Posts: 8780
Joined: 14 Mar 2010, 20:29
Contact:

Re: Post Your Public Keys

Postby dedanna1029 » 09 Sep 2015, 18:46

I'm sure, but will they see the certificate I've already generated?
I'd rather be a free person who fears terrorists, than be a "safe" person who fears the government.
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html

User avatar
Snorkasaurus
Berserk
Posts: 587
Joined: 30 Dec 2013, 19:19
Contact:

Re: Post Your Public Keys

Postby Snorkasaurus » 09 Sep 2015, 18:59

dedanna1029 wrote:I'm sure, but will they see the certificate I've already generated?

Any reasonably current GPG should be able to import your existing certs regardless of OS or frontend GUI.

GPG is supposed to be OpenPGP compliant which is not the same as PGP (even though some references incorrectly use the term PGP instead of OpenPGP). So unless you are mixing GPG with versions of PGP that are more than a decade old, you have nothing to worry about. :-)

s.

User avatar
dedanna1029
Sound-Berserk
Posts: 8780
Joined: 14 Mar 2010, 20:29
Contact:

Re: Post Your Public Keys

Postby dedanna1029 » 10 Sep 2015, 01:30

Good. Thank you! :s
I'd rather be a free person who fears terrorists, than be a "safe" person who fears the government.
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html

User avatar
dedanna1029
Sound-Berserk
Posts: 8780
Joined: 14 Mar 2010, 20:29
Contact:

Re: Post Your Public Keys

Postby dedanna1029 » 22 Sep 2015, 22:35

Good gods, this thing's long:

Code: Select all

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2
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=2SfB
-----END PGP PUBLIC KEY BLOCK-----
Last edited by dedanna1029 on 23 Sep 2015, 01:43, edited 1 time in total.
I'd rather be a free person who fears terrorists, than be a "safe" person who fears the government.
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html

User avatar
Snorkasaurus
Berserk
Posts: 587
Joined: 30 Dec 2013, 19:19
Contact:

Re: Post Your Public Keys

Postby Snorkasaurus » 22 Sep 2015, 22:39

Oh wait, when sharing your key you should include the dashed lines at the top and bottom. :-)
s.

User avatar
viking60
Über-Berserk
Posts: 9351
Joined: 14 Mar 2010, 16:34

Re: Post Your Public Keys

Postby viking60 » 23 Sep 2015, 15:00

Stupid question:
After that key stuff is done how does the email work. Can only people that have your key send you mails? Can you send to everyone? How does it affect the mail stuff.
I mean the safest thing is not to allow anyone to send to you, but if they have to come here and download the key; that would pretty much be the same thing..

How does it work?
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"

User avatar
Snorkasaurus
Berserk
Posts: 587
Joined: 30 Dec 2013, 19:19
Contact:

Re: Post Your Public Keys

Postby Snorkasaurus » 23 Sep 2015, 16:21

Basically the way it works with email is...
  1. You come here and get my public key (or from a keyserver)
  2. You import my public key to your keyring
  3. You use my public key to encrypt a message and send it to me
  4. I use my private key to decrypt the message and read it
You may also encrypt a message to multiple keys, and might want to always encrypt to your own key so that you can decrypt it later. The real deficiency is in the available client applications. On Windows there is Claws Mail, which I think comes with gpg4win but is not installed by default. It has some encryption-related features built right in which allows for encryption/decryption/verification right in a message window. Unfortunately the configuration of Claws Mail is a little unruly and I don't like some of the way the GUI is laid out. Some people like to use a notification tray icon [Kleopatra or PGP] with a text editor to encrypt/decrypt, and copy/paste the contents in/out an email message. I kind of like Enigmail which is an extension for Thunderbird/SeaMonkey. It adds an OpenPGP menu to your mail application that lets you encrypt or sign from right in your "message window" and also shows status right in the message window. Here is an example of a test message I sent myself and signed.
Image

Oh yes, that reminds me... I should also mention that key sets can also be used to prove who wrote a message (known as signing). For example, if you imported my public key as described above, you could verify that the following message is really from me

Code: Select all

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This is a message signed just for you!

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iEYEARECAAYFAlYCvisACgkQ2ql7+zsYfcG7KgCg2QkFyfSZdzJoSbvF+QGHxrb4
gY8AnRQvMrrpYP6+2qMKFKBxSWH0roJb
=HWSL
-----END PGP SIGNATURE-----

Some people don't like the way that looks though, they find the extra text distracting I guess. As you can see though, if you are using an encryption-friendly client application (like my screenshot above) the extra text is not shown and just a status is given instead. It is important to understand that in the case of signing, the message is PLAIN TEXT and the signature only verifies that it was me who sent it. It is also possible to encrypt and sign at the same time.

Does that create more questions than it answers? :-)

s.

User avatar
viking60
Über-Berserk
Posts: 9351
Joined: 14 Mar 2010, 16:34

Re: Post Your Public Keys

Postby viking60 » 23 Sep 2015, 17:53

Eh...yes because you anticipate that I have a clue about mail.

When Hillary Clinton sends me a mail after I have successfully set up my client. And published my key etc etc. And she does not have the time nor wants to look for my keys to import.
She only wants me to head the NSA and sends me an offer to that effect.

Will I get that mail? Is the only difference that it is not signed and sealed?
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"

User avatar
Snorkasaurus
Berserk
Posts: 587
Joined: 30 Dec 2013, 19:19
Contact:

Re: Post Your Public Keys

Postby Snorkasaurus » 23 Sep 2015, 19:04

LAWL! :lolup

You will still get your top secret NSA job. Regular email is still handled the same way, and encrypted/signed email is like a layer on top of the existing regular email service. There are a few things to think about though...

- All headers, such as from, to, and subject are still plain text (I like to put "no subject" in the subject line to keep mail servers happy)
- very few people actually encrypt or sign email
- email servers have no idea what they are sending and just pass the info on blindly
- HTML formatting in encrypted messages is just awful, and plain text works much better
- I have never tested with alternate keyboard layouts and charsets, so if you [hint hint] are feeling motivated you could maybe use a non-us layout to see if your characters cause any problems.

As mentioned, encryption is obviously not widely used... mostly because there is a lot to learn first before you can start using it. So in my case 99% of the emails I send/receive are not encrypted or signed. When I do send/receive encrypted mail, I just use the extra options provided by TBird/Enigmail. Kind of like SSL being a layer on top of http... you just have to understand the little hints like a lock icon and yellow URL bar when you access https sites. If only OpenPGP email was as easy as https web sites!

s.

User avatar
viking60
Über-Berserk
Posts: 9351
Joined: 14 Mar 2010, 16:34

Re: Post Your Public Keys

Postby viking60 » 23 Sep 2015, 21:44

Ah got it :idea: That means that I will still receive my spam but I can announce that if people want to be sure it is from me then they better download the key.

No reason not to try this then. As you can imagine I was so concerned about Hillary's E-mail practice that I thought I risked not to get the job.

I know a lot about spying- and it is worth a fortune to shut me up - so..yup I am pretty confident about that offer. +1

Now lemme see if I can get that encryption going....

...
Anything that works with thunderbird? Probably an irrelevant question ..reading up as we "speak"....
Ok Got Gnupg (was installed) and the Enigmail addon for Thunderbird....

...
Generating keys now... this is so exiting.. :pray: still generating ... getting nervous ... why does it take so long :roll:
Ok Got the key but now I need to make a key to withdraw that key in case I loose it so that people do not continue using it....Monkey see monkey doo...
"Enigmail is ready for use thank you for using" :smug

Now I am trying to figure out where those keys are hiding :confused


Code: Select all

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2
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=7ZFU
-----END PGP PUBLIC KEY BLOCK-----

:jackpot
This was helpful.
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"

User avatar
viking60
Über-Berserk
Posts: 9351
Joined: 14 Mar 2010, 16:34

Re: Post Your Public Keys

Postby viking60 » 23 Sep 2015, 23:00

Tried to send an ecnrypted mail to my gmail account and got "the recipient is not accepted, not found or cannot be trusted " :shock:
Ok bear with me I am learning here :coffee_smile: I sent myself the key and clicked on the attachment ending with .asc
That automatically added the key to my gmail in thunderbird - and the green bar indicated that it was good and from me.
But where do we put the keys published here?

Oh wow There is this import from clipboard option; et voila you get accepted - dedanna is down; one to go....
:drummer
Got them!

Seems to work fine but I wonder what happens if I send a signature to Microsoft outlook`? :think:
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"


Return to “The Lounge”