Sascha Tayefeh's Homepage

Blogging about Information Technology

Archive for the ‘PGP’ tag

How to Batch Decrypt With GNU GPG

without comments

Batch decrypting multiple files using a wildcard is as simple as:

echo thisismypassphrase|gpg --passphrase-fd 0 --decrypt-files *.gpg

And mind the lack of spaces right and left of the pipe ;-)

Written by Sascha Tayefeh

June 28th, 2009 at 7:24 pm

Posted in HowTo

Tagged with , , ,

Creating strong PGP keys – Quick and Dirty

without comments

Ok, all PGP keys are strong. However, here is some advice on how to create good keys:

  1. $ gpg –gen-key –enable-dsa2
  2. Select (1) DSA and Elgamal (default).
  3. Use 3072 as keysize for DSA keys.
  4. Use 4096 as keysize for ELG-E keys.
  5. Continue at will until key generation is finished.
  6. gpg –edit-key Key-ID
  7. showpref
  8. setpref AES256 TWOFISH AES192 AES SHA256 SHA512 RIPEMD160 ZIP BZIP2
  9. save
  10. ALWAY CREATE A REVOKE CERTIFICATION IN CASE YOU LOOSE YOUR PASSPHRASE:
    gpg –gen-revoke Key-ID > Key-ID.revcert.asc in der Konsole eingeben
  • Main Operations:
	gpg --list-keys
	gpg --keyserver hkp://[YOURKEYSERVERURL] --send-keys Key-ID
	gpg -ao Key-IDpubkey.asc --export Key-ID
	gpg -o Key-IDseckey --export-secret-keys Key-ID
	gpg --import Keyfile.asc
	gpg --keyserver hkp:[YOURKEYSERVERURL] --search-keys "User Name"
	gpg --fetch-keys URL
	gpg --recv-keys Key-ID
  • Change passphrase:
  1. gpg –edit-key Key-ID
  2. passwd
  3. save
  • Cleanup (remove unused stuff):
  1. gpg –edit-key Key-ID
  2. clean
  3. save
  • Revoke:
  1. gpg –edit-key Key-ID
  2. key n (if only subkeys need to be revoked)
  3. revkey

BTW, useful stuff:

  • Commandline GnuPG (also for Windows)
  • A Good Windows GUI: GnuSHELL
  • Awesom Firefox Plugin (makes PGP with Webmail etc easy): FireGPG

Written by Sascha Tayefeh

November 29th, 2008 at 8:24 pm

Posted in HowTo

Tagged with , , ,

Switch to our mobile site