Difference between revisions of "GnuPG"

From YobiWiki
Jump to navigation Jump to search
m (Replaced content with " === Paper backup of the secret keys === apt-get install paperkey gpg --export-secret-key key_id | paperkey ==GnuPG signing parties== ==[[Short GnuPG reference car...")
Line 1: Line 1:
''French part was converted with [[MediaWiki#HTML-WikiConverter|HTML::WikiConverter::MediaWiki]] from my old phpwiki site''
 
==Intro==
 
Un très bon point de départ: http://www.gnupg.org/gph/fr/manual.html
 
 
Une introduction a GnuPG(vulgaristation): http://www.vilya.org/gpg/
 
 
== Mes clés ==
 
 
On peut les trouver un peu partout.
 
 
gpg --keyserver wwwkeys.pgp.net --recv-key 0x7A135F579AD7E3DB
 
 
== Serveurs publics ==
 
 
* http://wwwkeys.pgp.net
 
* [http://sks-keyservers.net/status/ A list...]
 
* http://pgp.mit.edu (very slow)
 
 
== Key Signing Coordination ==
 
 
http://www.biglumber.com/
 
 
== Distance entre clés ==
 
 
Par exemple<br />[http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=135EA668&to=9AD7E3DB http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=135EA668&amp;to=9AD7E3DB]<br />[http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=449FA3AB&to=9AD7E3DB http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=449FA3AB&amp;to=9AD7E3DB]<br />Remplacer les IDs des clés pour essayer d'autres chemins.
 
 
Update: les URLs précédentes ne fonctionnent apparemment plus, vous pouvez essayer avec celles-ci:<br>
 
http://pgp.cs.uu.nl/mk_path.cgi?FROM=135EA668&TO=9AD7E3DB&PATHS=trust+paths<br>
 
http://pgp.cs.uu.nl/mk_path.cgi?FROM=449FA3AB=9AD7E3DB&PATHS=trust+paths
 
 
[http://www.cs.uu.nl/people/henkp/henkp/pgp/pathfinder/mk_path.cgi?STAT=9AD7E3DB&STATS=statistics http://www.cs.uu.nl/people/henkp/henkp/pgp/pathfinder/mk_path.cgi?STAT=9AD7E3DB&amp;STATS=statistics]
 
 
=== Strong Set ===
 
 
Une analyse globale est disponible ici: http://pgp.cs.uu.nl/plot/<br />[http://www.dtype.org/keyanalyze/output/200208/9A/9AD7E3DB J'y suis rentré en août 2002] avec une distance moyenne de 6.9916 (merci adulau ;-) <br />Des analyses mensuelles sont disponibles ici: http://keyserver.kjsl.com/~jharris/ka
 
 
<div class="plugin tightenable top">
 
 
{| border="1" cellspacing="1" cellpadding="1"
 
| align="left" | '''Date'''
 
| align="left" | '''Mean dist'''
 
| align="left" | '''World class'''
 
| align="left" | '''From Set to ID'''
 
| align="left" | '''From ID to Set'''
 
| align="left" | '''Max hops'''
 
| align="left" | '''Strong set'''
 
| align="left" | '''Average mean'''
 
|-
 
| align="left" |
 
[http://www.dtype.org/keyanalyze/output/200208/ 08-2002]
 
| align="left" | 6.9916
 
| align="left" | &gt;1000
 
| align="left" | -
 
| align="left" | -
 
| align="left" | 15
 
| align="left" | 14159
 
| align="left" | 6.5105
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-08-11/ 11-08-2002]
 
| align="left" | 5.7041
 
| align="left" | &gt;1000
 
| align="left" | -
 
| align="left" | -
 
| align="left" | 14
 
| align="left" | 14353
 
| align="left" | 6.5222
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-08-25/ 25-08-2002]
 
| align="left" | 5.6948
 
| align="left" | &gt;1000
 
| align="left" | -
 
| align="left" | -
 
| align="left" | 14
 
| align="left" | 14586
 
| align="left" | 6.5327
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-09-08/ 08-09-2002]
 
| align="left" | 5.6979
 
| align="left" | &gt;1000
 
| align="left" | -
 
| align="left" | -
 
| align="left" | 14
 
| align="left" | 14797
 
| align="left" | 6.5561
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-09-22/ 22-09-2002]
 
| align="left" | 5.6648
 
| align="left" | &gt;1000
 
| align="left" | -
 
| align="left" | -
 
| align="left" | 14
 
| align="left" | 14973
 
| align="left" | 6.5084
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-10-06/ 06-10-2002]
 
| align="left" | 5.6414
 
| align="left" | &gt;1000
 
| align="left" | -
 
| align="left" | -
 
| align="left" | 14
 
| align="left" | 15169
 
| align="left" | 6.5101
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-10-20/ 20-10-2002]
 
| align="left" | 5.6296
 
| align="left" | &gt;1000
 
| align="left" | 9
 
| align="left" | 12
 
| align="left" | 14
 
| align="left" | 15370
 
| align="left" | 6.5037
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-11-03/ 03-11-2002]
 
| align="left" | 5.5183
 
| align="left" | &gt;1000
 
| align="left" | 19
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 15575
 
| align="left" | 6.5045
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-11-17/ 17-11-2002]
 
| align="left" | 5.4787
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 15787
 
| align="left" | 6.5017
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-12-01/ 01-12-2002]
 
| align="left" | 5.4420
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 15949
 
| align="left" | 6.4797
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-12-15/ 15-12-2002]
 
| align="left" | 5.4373
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 16174
 
| align="left" | 6.4806
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2002-12-29/ 29-12-2002]
 
| align="left" | 5.3922
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 16305
 
| align="left" | 6.4931
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-01-12/ 12-01-2003]
 
| align="left" | 5.3865
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 16474
 
| align="left" | 6.4804
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-01-26/ 26-01-2003]
 
| align="left" | 5.2183
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 16673
 
| align="left" | 6.4706
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-02-09/ 09-02-2003]
 
| align="left" | 5.2173
 
| align="left" | &gt;1000
 
| align="left" | 24
 
| align="left" | 27
 
| align="left" | 13
 
| align="left" | 16951
 
| align="left" | 6.4849
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-02-23/ 23-02-2003]
 
| align="left" | 4.7102
 
| align="left" | 496
 
| align="left" | 43
 
| align="left" | 63
 
| align="left" | 13
 
| align="left" | 17338
 
| align="left" | 6.4773
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-03-09/ 09-03-2003]
 
| align="left" | 4.7024
 
| align="left" | 507
 
| align="left" | 45
 
| align="left" | 63
 
| align="left" | 13
 
| align="left" | 17620
 
| align="left" | 6.4711
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-03-23/ 23-03-2003]
 
| align="left" | 4.6933
 
| align="left" | 500
 
| align="left" | 46
 
| align="left" | 63
 
| align="left" | 13
 
| align="left" | 17861
 
| align="left" | 6.4675
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-04-06/ 06-04-2003]
 
| align="left" | 4.6794
 
| align="left" | 481
 
| align="left" | 47
 
| align="left" | 63
 
| align="left" | 13
 
| align="left" | 18197
 
| align="left" | 6.6484
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-04-20/ 20-04-2003]
 
| align="left" | 4.6373
 
| align="left" | 367
 
| align="left" | 51
 
| align="left" | 67
 
| align="left" | 13
 
| align="left" | 19075
 
| align="left" | 6.6624
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-05-04/ 04-05-2003]
 
| align="left" | 4.6281
 
| align="left" | 358
 
| align="left" | 51
 
| align="left" | 67
 
| align="left" | 13
 
| align="left" | 19372
 
| align="left" | 6.6584
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-05-18/ 18-05-2003]
 
| align="left" | 4.6027
 
| align="left" | 330
 
| align="left" | 51
 
| align="left" | 67
 
| align="left" | 13
 
| align="left" | 19641
 
| align="left" | 6.6410
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-06-01/ 01-06-2003]
 
| align="left" | 4.6002
 
| align="left" | 331
 
| align="left" | 51
 
| align="left" | 67
 
| align="left" | 13
 
| align="left" | 19833
 
| align="left" | 6.6261
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-06-15/ 15-06-2003]
 
| align="left" | 4.5854
 
| align="left" | 335
 
| align="left" | 52
 
| align="left" | 68
 
| align="left" | 13
 
| align="left" | 20095
 
| align="left" | 6.6038
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-06-29/ 29-06-2003]
 
| align="left" | 4.5700
 
| align="left" | 330
 
| align="left" | 52
 
| align="left" | 68
 
| align="left" | 13
 
| align="left" | 20305
 
| align="left" | 6.5954
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-07-13/ 13-07-2003]
 
| align="left" | 4.5531
 
| align="left" | 327
 
| align="left" | 52
 
| align="left" | 68
 
| align="left" | 13
 
| align="left" | 20602
 
| align="left" | 6.5762
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-07-27/ 27-07-2003]
 
| align="left" | 4.5189
 
| align="left" | 419
 
| align="left" | 52
 
| align="left" | 68
 
| align="left" | 13
 
| align="left" | 20814
 
| align="left" | 6.5251
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-08-10/ 10-08-2003]
 
| align="left" | 4.4803
 
| align="left" | 440
 
| align="left" | 52
 
| align="left" | 68
 
| align="left" | 13
 
| align="left" | 21025
 
| align="left" | 6.4861
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-08-24/ 24-08-2003]
 
| align="left" | 4.4676
 
| align="left" | 461
 
| align="left" | 58
 
| align="left" | 75
 
| align="left" | 13
 
| align="left" | 21333
 
| align="left" | 6.4784
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-09-07/ 07-09-2003]
 
| align="left" | 4.4565
 
| align="left" | 462
 
| align="left" | 59
 
| align="left" | 76
 
| align="left" | 13
 
| align="left" | 21487
 
| align="left" | 6.4721
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2003-10-05/ 05-10-2003]
 
| align="left" | 4.4456
 
| align="left" | 482
 
| align="left" | 59
 
| align="left" | 76
 
| align="left" | 13
 
| align="left" | 21843
 
| align="left" | 6.4762
 
|-
 
| align="left" |
 
[http://keyserver.kjsl.com/~jharris/ka/2008-02-17/ 17-02-2008]
 
| align="left" | 4.4435
 
| align="left" | 1761
 
| align="left" | 16
 
| align="left" | 91
 
| align="left" | 14
 
| align="left" | 40282
 
| align="left" | 5.98?
 
|-
 
| align="left" |
 
[http://skylane.kjsl.com/~jharris/ka/2008--/ --2008]
 
| align="left" | 4.
 
| align="left" | -
 
| align="left" | 0
 
| align="left" | 0
 
| align="left" | 0
 
| align="left" | -
 
| align="left" | 6.
 
|}
 
 
</div>
 
<source lang=bash>
 
#!/bin/bash
 
# gpg-setstats retrieves stats about the strongset & your key
 
REF="http://skylane.kjsl.com/~jharris/ka"
 
MYKEY=${1:-"9AD7E3DB"}
 
 
for URL in $(lynx -dump $REF|grep "$REF/200"|cut -c 7-53); do
 
select q in "Stats for the ${URL#$REF}" "Skip" "Quit";do
 
if [ "$q" == "Stats for the ${URL#$REF}" ]; then
 
echo =======================================
 
echo Retrieve infos for ${URL#$REF}:
 
wget -O - -q ${URL}other.txt
 
wget -O - -q ${URL}status.txt|grep "strongly connected"
 
wget -O - -q $URL${MYKEY:0:2}/$MYKEY|grep "^KeyID\|^Total\|^Mean\|^Farthest"
 
echo -n "World Class:"
 
lynx -dump ${URL}top1000table.html|grep $MYKEY|grep -v kjsl
 
echo =======================================
 
break; fi
 
if [ "$q" == "Skip" ]; then
 
break; fi
 
if [ "$q" == "Quit" ]; then
 
exit; fi
 
echo test $URL
 
done
 
done
 
</source>
 
== Tips ==
 
 
=== Pour fetcher ttes les UIDs qui ont signé une clé ===
 
 
for key in $(gpg --list-sigs $1|grep ^sig|cut -c 13-20|sort|uniq);
 
do
 
gpg --recv-key $key
 
done
 
 
=== quintuple-agent ===
 
 
 
eval `q-agent &`
 
q-client put 9AD7E3DB -t 3600
 
or directly use '''agpg''' instead of '''gpg'''
 
 
=== Support de OpenPGP dans KMail: ===
 
 
* http://kmail.kde.org/kmail-pgpmime-howto.html
 
 
 
wget ftp://ftp.gnupg.org/gcrypt/alpha/aegypten/debian/libksba0_0.4.3-1_i386.deb
 
dpkg -i libksba0_0.4.3-1_i386.deb
 
wget ftp://ftp.gnupg.org/gcrypt/alpha/aegypten/debian/pinentry-gtk_0.6.3-1_i386.deb
 
dpkg -i pinentry-gtk_0.6.3-1_i386.deb
 
wget ftp://ftp.gnupg.org/gcrypt/alpha/aegypten/debian/gpgsm_0.3.9-1_i386.deb
 
dpkg -i gpgsm_0.3.9-1_i386.deb
 
gpg --rebuild-keydb-caches
 
 
Editer ~/.gnupg/gpg.conf -> use-agent <br />Dans KMail, Settings->Configure KMail->Security->Crypto Plugins et ajouter gpgme-openpgp.so plugin. <br />Laisser "update URL" vide et mettre un nom comme par ex. "OpenPGP", "location": /usr/lib/cryptplug/gpgme-opengpg.so
 
 
/usr/local/bin/gpg-kmail:
 
 
<source lang=bash>
 
#!/bin/bash
 
launch_me(){
 
eval "$(gpg-agent --pinentry-program /usr/bin/pinentry-gtk --no-grab --default-cache-ttl 1800 )"
 
kmail $* --nofork
 
echo $GPG_AGENT_INFO|cut -d: -f2|xargs kill
 
}
 
launch_me $* &
 
exit 0
 
</source>
 
=== Support of Enigmail in Firefox ===
 
A promising solution for webmails...
 
<br>See http://www.camrdale.org/GoogleSoC.html
 
   
 
=== Paper backup of the secret keys ===
 
=== Paper backup of the secret keys ===
Line 459: Line 7:
   
 
==[[Short GnuPG reference card]]==
 
==[[Short GnuPG reference card]]==
  +
  +
==[[GnuPG old notes]]==

Revision as of 22:54, 4 February 2016

Paper backup of the secret keys

apt-get install paperkey
gpg --export-secret-key key_id | paperkey

GnuPG signing parties

Short GnuPG reference card

GnuPG old notes