For Linux there are lots of alternatives.
s.
Post Your Public Keys
Moderators: b1o, jkerr82508
- Snorkasaurus
- Berserk
- Posts: 587
- Joined: 30 Dec 2013, 19:19
- Contact:
- dedanna1029
- Sound-Berserk
- Posts: 8780
- Joined: 14 Mar 2010, 20:29
- Contact:
Re: Post Your Public Keys
I'm sure, but will they see the certificate I've already generated?
I'd rather be a free person who fears terrorists, than be a "safe" person who fears the government.
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html
- Snorkasaurus
- Berserk
- Posts: 587
- Joined: 30 Dec 2013, 19:19
- Contact:
Re: Post Your Public Keys
dedanna1029 wrote:I'm sure, but will they see the certificate I've already generated?
Any reasonably current GPG should be able to import your existing certs regardless of OS or frontend GUI.
GPG is supposed to be OpenPGP compliant which is not the same as PGP (even though some references incorrectly use the term PGP instead of OpenPGP). So unless you are mixing GPG with versions of PGP that are more than a decade old, you have nothing to worry about. :-)
s.
- dedanna1029
- Sound-Berserk
- Posts: 8780
- Joined: 14 Mar 2010, 20:29
- Contact:
Re: Post Your Public Keys
Good. Thank you!
I'd rather be a free person who fears terrorists, than be a "safe" person who fears the government.
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html
- dedanna1029
- Sound-Berserk
- Posts: 8780
- Joined: 14 Mar 2010, 20:29
- Contact:
Re: Post Your Public Keys
Good gods, this thing's long:
Code: Select all
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2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=2SfB
-----END PGP PUBLIC KEY BLOCK-----
Last edited by dedanna1029 on 23 Sep 2015, 01:43, edited 1 time in total.
I'd rather be a free person who fears terrorists, than be a "safe" person who fears the government.
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html
No gods, no masters.
"A druid is by nature anarchistic, that is, submits to no one."
http://uk.druidcollege.org/faqs.html
- Snorkasaurus
- Berserk
- Posts: 587
- Joined: 30 Dec 2013, 19:19
- Contact:
Re: Post Your Public Keys
Oh wait, when sharing your key you should include the dashed lines at the top and bottom. :-)
s.
s.
Re: Post Your Public Keys
Stupid question:
After that key stuff is done how does the email work. Can only people that have your key send you mails? Can you send to everyone? How does it affect the mail stuff.
I mean the safest thing is not to allow anyone to send to you, but if they have to come here and download the key; that would pretty much be the same thing..
How does it work?
After that key stuff is done how does the email work. Can only people that have your key send you mails? Can you send to everyone? How does it affect the mail stuff.
I mean the safest thing is not to allow anyone to send to you, but if they have to come here and download the key; that would pretty much be the same thing..
How does it work?
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"
"There are no stupid questions - Only stupid answers!"
- Snorkasaurus
- Berserk
- Posts: 587
- Joined: 30 Dec 2013, 19:19
- Contact:
Re: Post Your Public Keys
Basically the way it works with email is...
Oh yes, that reminds me... I should also mention that key sets can also be used to prove who wrote a message (known as signing). For example, if you imported my public key as described above, you could verify that the following message is really from me
Some people don't like the way that looks though, they find the extra text distracting I guess. As you can see though, if you are using an encryption-friendly client application (like my screenshot above) the extra text is not shown and just a status is given instead. It is important to understand that in the case of signing, the message is PLAIN TEXT and the signature only verifies that it was me who sent it. It is also possible to encrypt and sign at the same time.
Does that create more questions than it answers? :-)
s.
- You come here and get my public key (or from a keyserver)
- You import my public key to your keyring
- You use my public key to encrypt a message and send it to me
- I use my private key to decrypt the message and read it
Oh yes, that reminds me... I should also mention that key sets can also be used to prove who wrote a message (known as signing). For example, if you imported my public key as described above, you could verify that the following message is really from me
Code: Select all
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
This is a message signed just for you!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iEYEARECAAYFAlYCvisACgkQ2ql7+zsYfcG7KgCg2QkFyfSZdzJoSbvF+QGHxrb4
gY8AnRQvMrrpYP6+2qMKFKBxSWH0roJb
=HWSL
-----END PGP SIGNATURE-----
Some people don't like the way that looks though, they find the extra text distracting I guess. As you can see though, if you are using an encryption-friendly client application (like my screenshot above) the extra text is not shown and just a status is given instead. It is important to understand that in the case of signing, the message is PLAIN TEXT and the signature only verifies that it was me who sent it. It is also possible to encrypt and sign at the same time.
Does that create more questions than it answers? :-)
s.
Re: Post Your Public Keys
Eh...yes because you anticipate that I have a clue about mail.
When Hillary Clinton sends me a mail after I have successfully set up my client. And published my key etc etc. And she does not have the time nor wants to look for my keys to import.
She only wants me to head the NSA and sends me an offer to that effect.
Will I get that mail? Is the only difference that it is not signed and sealed?
When Hillary Clinton sends me a mail after I have successfully set up my client. And published my key etc etc. And she does not have the time nor wants to look for my keys to import.
She only wants me to head the NSA and sends me an offer to that effect.
Will I get that mail? Is the only difference that it is not signed and sealed?
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"
"There are no stupid questions - Only stupid answers!"
- Snorkasaurus
- Berserk
- Posts: 587
- Joined: 30 Dec 2013, 19:19
- Contact:
Re: Post Your Public Keys
LAWL!
You will still get your top secret NSA job. Regular email is still handled the same way, and encrypted/signed email is like a layer on top of the existing regular email service. There are a few things to think about though...
- All headers, such as from, to, and subject are still plain text (I like to put "no subject" in the subject line to keep mail servers happy)
- very few people actually encrypt or sign email
- email servers have no idea what they are sending and just pass the info on blindly
- HTML formatting in encrypted messages is just awful, and plain text works much better
- I have never tested with alternate keyboard layouts and charsets, so if you [hint hint] are feeling motivated you could maybe use a non-us layout to see if your characters cause any problems.
As mentioned, encryption is obviously not widely used... mostly because there is a lot to learn first before you can start using it. So in my case 99% of the emails I send/receive are not encrypted or signed. When I do send/receive encrypted mail, I just use the extra options provided by TBird/Enigmail. Kind of like SSL being a layer on top of http... you just have to understand the little hints like a lock icon and yellow URL bar when you access https sites. If only OpenPGP email was as easy as https web sites!
s.
You will still get your top secret NSA job. Regular email is still handled the same way, and encrypted/signed email is like a layer on top of the existing regular email service. There are a few things to think about though...
- All headers, such as from, to, and subject are still plain text (I like to put "no subject" in the subject line to keep mail servers happy)
- very few people actually encrypt or sign email
- email servers have no idea what they are sending and just pass the info on blindly
- HTML formatting in encrypted messages is just awful, and plain text works much better
- I have never tested with alternate keyboard layouts and charsets, so if you [hint hint] are feeling motivated you could maybe use a non-us layout to see if your characters cause any problems.
As mentioned, encryption is obviously not widely used... mostly because there is a lot to learn first before you can start using it. So in my case 99% of the emails I send/receive are not encrypted or signed. When I do send/receive encrypted mail, I just use the extra options provided by TBird/Enigmail. Kind of like SSL being a layer on top of http... you just have to understand the little hints like a lock icon and yellow URL bar when you access https sites. If only OpenPGP email was as easy as https web sites!
s.
Re: Post Your Public Keys
Ah got it That means that I will still receive my spam but I can announce that if people want to be sure it is from me then they better download the key.
No reason not to try this then. As you can imagine I was so concerned about Hillary's E-mail practice that I thought I risked not to get the job.
I know a lot about spying- and it is worth a fortune to shut me up - so..yup I am pretty confident about that offer.
Now lemme see if I can get that encryption going....
...
Anything that works with thunderbird? Probably an irrelevant question ..reading up as we "speak"....
Ok Got Gnupg (was installed) and the Enigmail addon for Thunderbird....
...
Generating keys now... this is so exiting.. still generating ... getting nervous ... why does it take so long
Ok Got the key but now I need to make a key to withdraw that key in case I loose it so that people do not continue using it....Monkey see monkey doo...
"Enigmail is ready for use thank you for using"
Now I am trying to figure out where those keys are hiding
This was helpful.
No reason not to try this then. As you can imagine I was so concerned about Hillary's E-mail practice that I thought I risked not to get the job.
I know a lot about spying- and it is worth a fortune to shut me up - so..yup I am pretty confident about that offer.
Now lemme see if I can get that encryption going....
...
Anything that works with thunderbird? Probably an irrelevant question ..reading up as we "speak"....
Ok Got Gnupg (was installed) and the Enigmail addon for Thunderbird....
...
Generating keys now... this is so exiting.. still generating ... getting nervous ... why does it take so long
Ok Got the key but now I need to make a key to withdraw that key in case I loose it so that people do not continue using it....Monkey see monkey doo...
"Enigmail is ready for use thank you for using"
Now I am trying to figure out where those keys are hiding
Code: Select all
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2
mQINBFYDLIABEADD49kORVwrPrdmlZiGu+saLUFOlLhR62vI0cnZf6jKPmWhWVCH
J+tOAzYvGbXBXXRBTQJ3KKkLbORrdTahtXXzVuJhVhxwPvKDB2zXutKD7OtjJ23w
d5B7E3Rf5JxKy1AHT9XLJvNgbruatb6evcKxC/XNj2vsHeoDKDYxTqRagRK7CHOg
xqZRvDLAXASz8JRk2iHZqPo66N0fvw3xhpJ2lrqndf0ltdgkJmKTjUVIHlNtRnH7
9hwcLCkSIcR4O4Uy5fZK5nx86gs5ROTIpA04zTmeVpzBXtD6Mkfwhb6dSSWd0XQe
mamDlk5VQ6UwXPIHJPSnjpynxYsk99CU3EBCDKgHnpGqTFpriRRcq1LCv/5q9gWp
+J6OUiG1k7+DalWhWkY/wgA+hK9mj2rO1TvQWNk0Y9UdeObXjwmLDSo1E0JgSVC9
mD+AV5vHKriU3GgrpHAgYWg9+utoHeGGx2fDOY4RI21uP5BKRssSoIgSkTSa9xoK
tufMXJ2zcajffN4pY4NbFg6gKfGDzP+klCkT0jOwtaz7gXpjPHwU99hHOvD0ZP2t
eWZeKM4t3wPuIZcKj0lrefmKlHU11bFV9U+wRgpi4DQ0HVJzyMvZDB3RFsux5f3z
RP6OIDIidnYOwJGPHO4M1kj2xfmqiZ4TvVJrUyxpxNtl9awL0yeb0h1euwARAQAB
tCp0aG9tYXMgKGdtYWlsKSA8dGhvbWFzYmpvcm52b2xkQGdtYWlsLmNvbT6JAjcE
EwEIACEFAlYDLIACGyMFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQ3COFgnUu
f0wATw//flXxUzz9sFQhyjmm1Vo0+ji6A6VzQWFTQPXEMkhsbRt3w6CBAAwSb3z9
w03YuAja+WWevB19oysy5ce99BobDI6xRbHJfaKeiMbZScQfNK3ZKCDfxGkd62Bj
oWOWbNtaFRhZwMzM34w5sDNfdM4Fk5Dl5rxm07E9fbTW7i8VPq84WGLiflg4NpFf
8koSsLMKNFO2Angpxnz2l/WtMhPqUk3nnHU5YGg/wVKgKQp/Ztre2YVKB3FNxyTd
rtpCdw/vg4KMGc0lKrzDT5ckhM21OFp6yRPbRlHKOfhQ6QhNkF8pY0tTUBHl2aUU
yTtSYWg4YD5+g/0akinJ8sBk0xoq+bBgvRt2PbM/w8I6CqT7dVgRA1u1EVGIxZW/
Rzn4nehfw97h9WXUR21BZXPEM4XcZIxPEPLaDCm0A6N7dA23EPEZ2Rbg2bAYcsKI
+skFevlnooiurFFJarL4FJ+MaZvORfikS1Xt92UY5hd541eBLBI6LC5cZEkD5X75
j1aVuatHlhI3Zld00zES9dbWnNIQojLLW6p9aR2aQVbcgIezJYHhQOnjXO5mgrXi
WnNjUxrbyaNbCZ2b/xp2XUsl+/1oBn9CqTqeLFHDxfrroCt6HdxSRSKu+YxousiX
RdolSg18UMOGzYH5z64ZVBQy8OCHoXJmAN2uuOc1mTBPZoCZJNO5Ag0EVgMsgAEQ
ALydHYgiRLSqUk7/Cqr2yJlP8DFfv0eIcBhCVsg2AsFkfl+GO3+eZAt7l4TWL2tD
0+Tervp0PqIf2RGvZFmk+b5a39iZ4KfObZFyMoHERywdSsCDQajDAOZOqUFKKS6q
3efdGbfojWxLBkdqbIfzRWhMB4yGQCoubxYrS1elQm1ag0YM4qXJGNuolLK6lTxC
IiYkIdBHoH7gs9qX888MbYLnOyxoApOZC8pFlen+lYQyQtxxfBDczHBv7/BHQO60
vvRPiIn4z7go6aZaddS9fx6Bssf3+MePsH9tIRaFIY+YJ1ha+p3Z4K39usFV/fvC
xzkxL5K7rTlycR9xpf7iCcji+oBNQhxJk6k7XNHm625R2rXmnwkdhLXdgOgzuri7
oiBSHGZ08/tavT/8o6+ZTbU0CuPboG/SlwHSXebDVUrmBX6UznnPlXmXkpByrVyL
kMKJVXPk4K+QGNfYltyEmUxiLwP3uvR3EjNXH1sMjEFRHKLJqNNd0mj9crWCxFY/
uxEkeClw3WyoUUvp5AZuDwpPGNAj0G27Z7qw2Ul1vYypPu2I8zzuE+Dsd3fWv0b/
qW9Nuh9+5U5n0Pae+/uTw0lB22nIp4qBEBN2WeMe2cMjsck4ojpCm/SEMWu6yJy2
6OkxlmvVmTy13dgM2cST6MQqqW/TNMGlUk3i20xdhvzfABEBAAGJAh8EGAEIAAkF
AlYDLIACGwwACgkQ3COFgnUuf0xQ8g//SfjLkb5VOFUbfvFopOsxLNhXDGJ+hbou
Trw+WhZU62dGM1UHBxEiETt0onIP4Qsn5/hmXmRhj9HPjTtGNCCymWARXxGklgUm
xf3dU1Vw4zRTqOTNHv5WTFqOliN9VLjusq+O+f5E00IxsTGvSDBckIyq0f1R8LT3
XoK70vp4hqrBeuqInMkpP9ybheNIp+JK4P3zqhq9EjQ7Cnd42Y7wxj6Yv4sYxT2V
0ysMENL0/bVkshtbVlu5NA9/vfwcfbTMV6LXrvzlgEtTn6e70hPzrNId3vONn0bJ
7N4adb28mDKZL2DGyBbGssiYzNa4ypOBaBY23RKGrXvBDrqh6py9R1otOV2cPMAe
8f4ZQYLA14roPYTSvy9tWbb1TttBPcMHulEVI8TL6eHUAUqirEi+kLdonKMWBVJ5
dizDQGQWmXDFL0gNiKWDXmg1YZ9R1vGHvoXIuKN1f3w3WlhOAYa9/5J9W/3Jxf+v
TzqG186aOBUBMwupumDTaRJElfXzzNH2o6qUVHU1zSHu+9L4Pz3NZJAut2omG8ZL
1XWdyH4qc4kCOEm5ftXA6JVZ903tVsKIB/K25cdQyh625XvrrS+sdeAp4UXH94Gu
XaRmfh4PqtNiZj3Ih1hmVrhUCP5ire1607med5Dq4r5noHIPXtELGzLfMqWUj7+u
1kpNZ/5FNWE=
=7ZFU
-----END PGP PUBLIC KEY BLOCK-----
This was helpful.
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"
"There are no stupid questions - Only stupid answers!"
Re: Post Your Public Keys
Tried to send an ecnrypted mail to my gmail account and got "the recipient is not accepted, not found or cannot be trusted "
Ok bear with me I am learning here I sent myself the key and clicked on the attachment ending with .asc
That automatically added the key to my gmail in thunderbird - and the green bar indicated that it was good and from me.
But where do we put the keys published here?
Oh wow There is this import from clipboard option; et voila you get accepted - dedanna is down; one to go....
Got them!
Seems to work fine but I wonder what happens if I send a signature to Microsoft outlook`?
Ok bear with me I am learning here I sent myself the key and clicked on the attachment ending with .asc
That automatically added the key to my gmail in thunderbird - and the green bar indicated that it was good and from me.
But where do we put the keys published here?
Oh wow There is this import from clipboard option; et voila you get accepted - dedanna is down; one to go....
Got them!
Seems to work fine but I wonder what happens if I send a signature to Microsoft outlook`?
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"
"There are no stupid questions - Only stupid answers!"