GNU/Linux GnuPG (GPG)

From WikiOD

GnuPG is a sophisticated key management system which allows for secure signing or encrypting data. GPG is a command-line tool used to create and manipulate GnuPG keys.

GnuPG is most widely used for having SSH (Secure Shell) connections without password or any means of interactive authentication, which improves security level significantly.

Following sections describe ways to create, use, and maintain security of GnuPG keys.

Create and use a GnuPG key quickly[edit | edit source]

Install haveged (example sudo apt-get install haveged) to speed up the random byte process. Then:

gpg --gen-key
gpg --list-keys


pub   2048R/NNNNNNNN 2016-01-01
uid                  Name <>
sub   2048R/xxxxxxxx 2016-01-01

Then publish:

gpg --keyserver --send-keys NNNNNNNN

Then plan to revoke:

Exporting your public key[edit | edit source]

In order for your public-private keypair to be of use, you must make your public key freely available to others. Be sure that you are working with your public key here since you should never share your private key. You can export your public key with the following command:

gpg —armor —export EMAIL_ADDRESS > public_key.asc

where EMAIL_ADDRESS is the email address associated with the key

Alternately, you can upload your public key to a public key server such as so that others can use it. To do so, enter the following in a terminal:

gpg —list-keys

Then, search for the 8-digit string (the primary ID) associated with the key you want to export. Then, issue the command:

gpg —send-keys PRIMARY_ID

where PRIMARY_ID is the actual ID of that key.

Now, the private key has been uploaded to the key server and is publicly available.