From owner-freebsd-questions@FreeBSD.ORG Tue Apr 15 10:17:47 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3AA4A37B401 for ; Tue, 15 Apr 2003 10:17:47 -0700 (PDT) Received: from smtp.mailbox.co.uk (smtp.mailbox.co.uk [195.82.125.32]) by mx1.FreeBSD.org (Postfix) with ESMTP id 31AE943F93 for ; Tue, 15 Apr 2003 10:17:46 -0700 (PDT) (envelope-from wayne.pascoe@penguinpowered.org.uk) Received: from [212.18.244.168] (helo=marvin.penguinpowered.org.uk) by smtp.mailbox.co.uk with esmtp (Exim 3.36 #1) id 195U41-0000vb-00; Tue, 15 Apr 2003 18:17:45 +0100 Received: from waynep by marvin.penguinpowered.org.uk with local (Exim 3.33 #1) id 195UDy-0002nt-00; Tue, 15 Apr 2003 18:28:02 +0100 Date: Tue, 15 Apr 2003 18:28:02 +0100 From: Wayne Pascoe To: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= Message-ID: <20030415172802.GA10735@marvin.penguinpowered.org.uk> References: <20030415154859.GD52871@kurdistan.ath.cx> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20030415154859.GD52871@kurdistan.ath.cx> User-Agent: Mutt/1.4i X-System: FreeBSD i386 with kernel 4.8-STABLE Sender: User Waynep cc: freebsd-questions@freebsd.org Subject: Re: PGP Signature Setup & Config X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Apr 2003 17:17:47 -0000 On Tue, Apr 15, 2003 at 08:48:59AM -0700, Sêrêciya Kurdistanî wrote: > I'm interested in implementing a PGP, and I'd like to poll those > of you who could give me pointers on where to start ;) I would suggest using GNUPG. It's in ports at /usr/ports/security/gnupg > 1) Where do I go to setup my key(s)? To create a key, use gpg --gen-key > a) should I try to use a specific type of key? > any compatibility issues? I personally use the defaults (DSA and ElGamal key, 1024 bits) Messages I encrypt can be decrypted by people using GNUPG and PGP alike. > b) are there certain key servers preferred for posting public > keys? commercial, non-commercial, etc... Again, I personally use www.co.uk.pgp.net > 2) How do I use it with "Mutt"? One of the main reasons I moved to mutt was it's simplicity of use with PGP. In my .muttrc I have the following : --- Please excuse lines longer than 72 chars here, but I want to show the config as it should be set pgp_decode_command="gpg %?p?--passphrase-fd 0? --batch --output - %f" set pgp_verify_command="gpg --no-verbose --batch --output - --verify %s %f" set pgp_decrypt_command="gpg --passphrase-fd 0 --batch --output - %f" set pgp_sign_command="gpg --batch --output - --passphrase-fd 0 --armor --detach-sign --textmode %?a?-u %a? %f" set pgp_clearsign_command="gpg --batch --output - --passphrase-fd 0 --armor --textmode --clearsign %?a?-u %a? %f" set pgp_encrypt_only_command="pgpewrap gpg -v --batch --output - --encrypt --textmode --armor -- -r %r -- %f" set pgp_encrypt_sign_command="pgpewrap gpg --passphrase-fd 0 -v --batch --output - --encrypt --sign %?a?-u %a? --armor -- -r %r -- %f" set pgp_import_command="gpg --import -v %f" set pgp_export_command="gpg --export --armor %r" set pgp_verify_key_command="gpg --batch --fingerprint --check-sigs %r" set pgp_list_pubring_command="gpg --batch --with-colons --list-keys %r" set pgp_list_secring_command="gpg --batch --with-colons --list-secret-keys %r" set pgp_getkeys_command="" set pgp_timeout=120 > a) are there any automated/simplified interfaces? Just press y to send :) Hope that all helps -- Wayne Pascoe