Collaborate Disseminate
3 people need to share some data through cloud. The total amount of data is small (<5gb in total). The update rate is very low, 1 per month. The cloud has very limited security measures so we consider all the files stored in it are publ… Continue reading Which one is safer for persistent online data? Gpg per file encryption vs gpg encrypted image vs LUKS2 image
I used gpg -c filename … and when I double click on the file, it just decrypts it without asking for a password. I don’t know, it feels like the file wasn’t encrypted at all. What did I do wrong? Or how can I make sure the file is encryp… Continue reading gpg -c "file" > when I double click on the file, it is decrypted automatically without asking for a pwd
I participated in two key sharing parties last week. Upon return, I tried to certify the keys of the participants that I had verified. For creating the signatures, I use caff from the signing-party package. I only verified that key, email … Continue reading How can I use `caff` to sign some keys at cert-level 2 and some at cert-level 3?
The primary secret key should be stored offline and only be used for creating/signing keys.
There will be at least two secret keys: one primary key or subkey for signing, and one subkey for encryption; there might be a third key for author… Continue reading Which PGP fingerprint to share/publish as my digital identity?
I can encrypt a file with gpg in the following manner:
gpg –symmetric –cipher-algo AES256 ./test.txt
This allows me to encrypt the file with a password. Does this also use a key I have locally, or is it strictly encrypted with the passwo… Continue reading When I encrypt a file with gpg, am I encrypting it with a key that lives on my local machine? [closed]
I am unable to identify certain public keys on my keyring because the key owner generated their public key using a UID that contained no identifiable information. For instance they’re completely lacking of an identifying email address tha… Continue reading Using GPG is there a way to label public keys on my OpenPGP keyring?
I want to mount a LUKS partition and decided to do it with a separate script which will contain the password to the LUKS partition, it will also decrypt the header file and mount the partition.
What vulnerabilities does this approach add c… Continue reading Is it safe to store the header and password from LUKS in an encrypted GPG script (symmetrically)?
I’ve recently been enjoying using my YubiKey to authenticate SSH via GPG Agent, TOTPs, and encrypting emails. However, I realised if I were to attend, say, a key signing party, that since the public key URL (as well as the fingerprint) is … Continue reading How to prevent my identity being revealed in the event my YubiKey is stolen?
According to my understanding of this document, Yubikey is capable of running ed25519-sk and gpg-agent.
Which one is more secure? Obviously, ed25519-sk wouldn’t work, if the SSH server is old, but other than that, is there any downside of … Continue reading ed25519-sk vs. gpg-agent on Yubikey
I want to use a GPG key instead of an SSH key. Looking online I found several guides on how to do it. But these guides are about using GPG for convenience. I instead want to know the pros and cons from the security perspective.
Firstly loo… Continue reading What are the security implications of using GPG instead of SSH keys for authentication