GNU Privacy Guard (GnuPG or GPG) is a GPL Licensed alternative to the PGP suite of cryptographic software. GnuPG is compliant with RFC 4880, which is the current IETF standards track specification of OpenPGP.
Questions tagged [gnupg]
813 questions
106
votes
1 answer
Are GnuPG 1 and GnuPG 2 compatible with each other?
With Macports, I realize that there are ports gnupg and a newer gnupg2. I'd like to use GnuPG to encrypt files. Should I install both, or just one is enough? If I installed both, are both compatible with each other? Does it matter which one I…
qazwsx
- 8,879
76
votes
2 answers
gpg: can't import key: "new key but contains no user ID - skipped"
I am trying to import Github's webflow signing key on a fresh install of Raspbian (Debian) Buster.
$ gpg2 --recv-keys 5DE3E0509C47EA3CF04A42D34AEE18F83AFDEB23
gpg: key 4AEE18F83AFDEB23: new key but contains no user ID - skipped
gpg: Total number…
pinhead
- 863
- 1
- 6
- 5
64
votes
1 answer
What do 'ssb' and 'sec' mean in gpg's output?
When listing keys with gpg2 --list-secret-keys, one is presented with a bunch of lines that begin with sec and ssb. What do these mean?
Rob Gilton
- 753
61
votes
5 answers
How to make GnuPG display full 8-byte/64-bit key ID?
How do I make GnuPG (specifically version 1.4.12) display the full, 64-bit (8-byte) key ID for a key on a keyring on my system?
Doing gpg --list-keys --fingerprint XXXXXXXX only displays the 32-bit portion of the key ID, which I already know, and…
user
- 29,910
18
votes
4 answers
gpg with gpg-agent never asks for passphrase
Without gpg-agent running, I can enter my passphrase to sign things:
$ echo 123 | gpg -s
You need a passphrase to unlock the secret key for
user: "Mr. Ops "
2048-bit RSA key, ID 20F31903, created 2014-03-13
gpg: gpg-agent is not…
jsd
- 408
14
votes
3 answers
gpg: WARNING: message was not integrity protected
I'm a little confused as what this means.
What's happened is that someone has encrypted a message for me using my public key, and signed it with their private key - as per usual.
Next, I decrypt the message...
-bash-3.2$ gpg --decrypt…
khosrow
- 261
14
votes
1 answer
What are the exact differences between GPG and GPG2 ? ( and does it even matter )
For me as hobby server admin it was always pretty clear. Use the built it gpg for all the hybrid encryption needs. But yesterday I had a problem with gpg (so the package called gnupg) in finding a key on a keyserver. I tried, but I did not manage to…
Richard R. Matthews
13
votes
1 answer
In GnuPG, how do I set an absolute date for expiry on my key?
In GnuPG I can edit the expiry of my key like this:
$ gpg --edit-key 01234567
[...]
gpg> expire
Changing expiration time for the primary key.
Please specify how long the key should be valid.
0 = key does not expire
= key expires…
gertvdijk
- 3,536
13
votes
4 answers
Is it possible to add a recipient to an already encrypted file in GPG?
Assuming I have encrypted a (possibly large) file using GPG; e.g.
gpg --recipient "Some Name" -o this_file.gpg --encrypt this_file.txt
Is it possible to add another recipient without first decrypting the file, followed by another encryption?
user34717
12
votes
3 answers
How to convert gpg public key from binary to ascii without import
I have a GPG public key key.gpg in binary format. I would like to convert this to ASCII so that the resulting file has the header
-----BEGIN PGP PUBLIC KEY BLOCK-----
The process I am setting up to do this does not have access to the usual central…
rlandster
- 1,412
11
votes
2 answers
How to convert key pair from binary file to text file?
I have a gpg keypair (2048 RSA) in binary file: a.pub and a.sec, now I want to convert it to text format, how to do that?
Lenik
- 18,302
11
votes
3 answers
gpg: only download a key from a keyserver
I have a keyid (648ACFD622F3D138) and keyserver: hkps://keyserver.ubuntu.com.
I can download the key and import it with something like: gpg --keyserver hkps://keyserver.ubuntu.com --recv-keys 648ACFD622F3D138.
But is it possible to only download the…
DimanNe
- 213
9
votes
1 answer
How are detached signatures used to verify a file's integrity and authenticity?
I understand that the detached signature is generated by the signer's private key and that you use the signer's public key to verify the downloaded file.
e.g.
gpg --verify package_name.asc
The signature is verified by using the signer's public…
user3247608
- 193
8
votes
1 answer
gpg --list-keys output after deleting secret key
I run gpg --list-keys and it shows me the keys present in the keyring:
/home/kshitiz/.gnupg/pubring.gpg
--------------------------------
pub 4096R/8F64D7E0 2015-02-18
uid Kshitiz Sharma (http://ksharma.in)…
Kshitiz Sharma
- 649
8
votes
1 answer
How to let gpg-agent confirm each key usage
When running gpg-agent as part of my login session each program I run has access to my (possibly) unlocked PGP-key. It might be paranoid, but I want to get confirmation about each key usage, so I wish for an option to gpg-agent that when the…
Uwe Kleine-König
- 191