GPG Key
Generating
- Generate a GPGKey, following the steps given by the command outputs.
gpg --full-gen-key
Public, private and fingerprint
- List the keys with:
gpg --list-secret-keys --keyid-format LONG
Or simply
gpg -aK
- Get the fingerprint
GPGKEY_FP=$(gpg --list-secret-keys --with-colons --fingerprint | awk -F: '$1 == "fpr" {print $10;}' | head -1)
- Get the full private key
GPGKEY_PK=$(gpg --export-secret-keys ${GPGKEY_FP} | base64 -w 0)
- Get the public key
GPGKEY_PB=$(gpg --armor --export ${GPGKEY_FP})
Encrypting
While working at some corporative projects, you'll probably handle CONFIDENTIAL INFORMATION.
Therefore, be sure to properly protect it.
gpg -aesr gmail@osouza.de -o <file.asc> <file.txt>
It's a shortcut of:
gpg --armor --encrypt --sign --recipient gmail@osouza.de --output <file.asc> <file.txt>
Symmetric
You can encrypt a file using a symmetric method gpg -c. But its not safe.
If you want to use it anyway, do in a safer approach
gpg -c --s2k-cipher-algo AES256 --s2k-digest-algo SHA512 --s2k-count 65536 <file>
Decrypting
// TODO
Edit GPG encrypted files on-the-fly
Check this article.
Signing
Checking
// TODO
Key Agent
// TODO
Maybe here we can see something...