GnuPG – Page 15 – WindowsTechs.com

Can GnuPg flag as invalid if it receives a key for a uid (the email) where the email is found on a keyserver, but not with that key?

Posted on August 19, 2021 by xenoterracide

I created a test key to share with someone for the purpose of debugging a client issue. However, I did not transmit that key to a key server, and it still uses my email. The key server locally that my email client (kmail or evolution) shou… Continue reading Can GnuPg flag as invalid if it receives a key for a uid (the email) where the email is found on a keyserver, but not with that key?→

paperkey generates different output every time [closed]

Posted on August 14, 2021 by student

I aim to backup my gnupg private key by writing it down on paper. The software paperkey seems to be promising, but one of its behaviors is unexpected.
I do the following
$ gpg –export-secret-keys –output secret.gpg "My Key Id"
… Continue reading paperkey generates different output every time [closed]→

Does gpg (or openpgp in general) authenticate symmetrically-encrypted data?

Posted on August 7, 2021 by CBHacking

When using gpg –symmetric to encrypt a file/message with a passphrase, is there any cryptographic integrity check to prevent an attacker from modifying the ciphertext? E.g. does gpg (or any other common implementation of OpenPGP) include,… Continue reading Does gpg (or openpgp in general) authenticate symmetrically-encrypted data?→

GnuPG now uses ECC 25519 as default on new key generation – any compatibility issues to worry about?

Posted on August 6, 2021 by namcios

TL;DR: I’m assuming that if GnuPG made it a default then it should be what we use, but it used "bad" defaults in the past so I’m wondering if there are any tradeoffs to this? More specifically: is ECC 25519 sufficiently adopted … Continue reading GnuPG now uses ECC 25519 as default on new key generation – any compatibility issues to worry about?→

AES-256 without key stretching

Posted on August 1, 2021 by cardamom

It is not so difficult to create a password which is exactly 32 characters long.
In this question – AES-256 Key Length Importance @Marc writes:

you absolutely should not be using a password as the raw key

..and in this one @Filip_Franik … Continue reading AES-256 without key stretching→

What are the best practices pertaining to signing your git commits on GitHub?

Posted on July 12, 2021 by Private

On GitHub, anyone can push a commit with your name and email. To combat this, you can gpg sign your commits.
However, in the scenario that the private key is exposed, the only option GitHub offers is to remove the associated public key. Un… Continue reading What are the best practices pertaining to signing your git commits on GitHub?→

GPG – use cached key before prompting for other cards when multiple receivers?

Posted on July 12, 2021 by OJFord

When using gpg 2.2.28 & gpg-agent to decrypt a ciphertext that has been encrypted for (any one of) multiple ‘receivers’, the default behaviour is that it tries to find and use private keys in some deterministic (governed by what, I’m n… Continue reading GPG – use cached key before prompting for other cards when multiple receivers?→

how does the certificate distributed by the CA work?

Posted on July 3, 2021 by wGetFluid

I generally wanted to know how a certificate works, I mean a certificate distributed by the Certificate Authority to identify the identity of a sender.
How does it work?
Can you use simple and easily understandable words? Thank you

Continue reading how does the certificate distributed by the CA work?→

avoiding plaintext on the hard drive

Posted on June 29, 2021 by cardamom

If you decrypt ciphertext to the terminal like this:
gpg –output – –armor –encrypt –recipient 23642351 message.txt.pgp

..does it touch the hard drive / ssd or only live in RAM?
What about when Thunderbird decrypts a message – does the… Continue reading avoiding plaintext on the hard drive→

Why am I able to decrypt the data I send using someone else’s public key?

Posted on June 25, 2021 by Tikiyetti

Sorry if this is more of a conceptual question. I was using GPG to send encrypted emails back and forth with a friend and I understand why I am able to decrypt the messages my friend sends me: because that data was encrypted using my gpg p… Continue reading Why am I able to decrypt the data I send using someone else’s public key?→