GnuPG: Difference between revisions

From YobiWiki
Jump to navigation Jump to search
← Older editNewer edit →
Content deleted Content added
m Replaced content with " === Paper backup of the secret keys === apt-get install paperkey gpg --export-secret-key key_id | paperkey ==GnuPG signing parties== ==[[Short GnuPG reference car..."
Line 1: Line 1:
''French part was converted with [[MediaWiki#HTML-WikiConverter|HTML::WikiConverter::MediaWiki]] from my old phpwiki site''
==Intro==
Un très bon point de départ: http://www.gnupg.org/gph/fr/manual.html

Une introduction a GnuPG(vulgaristation): http://www.vilya.org/gpg/

== Mes clés ==

On peut les trouver un peu partout.

gpg --keyserver wwwkeys.pgp.net --recv-key 0x7A135F579AD7E3DB

== Serveurs publics ==

* http://wwwkeys.pgp.net
* [http://sks-keyservers.net/status/ A list...]
* http://pgp.mit.edu (very slow)

== Key Signing Coordination ==

http://www.biglumber.com/

== Distance entre clés ==

Par exemple<br />[http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=135EA668&to=9AD7E3DB http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=135EA668&amp;to=9AD7E3DB]<br />[http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=449FA3AB&to=9AD7E3DB http://keyserver.kjsl.com/~jharris/gpgwww.cgi?from=449FA3AB&amp;to=9AD7E3DB]<br />Remplacer les IDs des clés pour essayer d'autres chemins.

Update: les URLs précédentes ne fonctionnent apparemment plus, vous pouvez essayer avec celles-ci:<br>
http://pgp.cs.uu.nl/mk_path.cgi?FROM=135EA668&TO=9AD7E3DB&PATHS=trust+paths<br>
http://pgp.cs.uu.nl/mk_path.cgi?FROM=449FA3AB=9AD7E3DB&PATHS=trust+paths

[http://www.cs.uu.nl/people/henkp/henkp/pgp/pathfinder/mk_path.cgi?STAT=9AD7E3DB&STATS=statistics http://www.cs.uu.nl/people/henkp/henkp/pgp/pathfinder/mk_path.cgi?STAT=9AD7E3DB&amp;STATS=statistics]

=== Strong Set ===

Une analyse globale est disponible ici: http://pgp.cs.uu.nl/plot/<br />[http://www.dtype.org/keyanalyze/output/200208/9A/9AD7E3DB J'y suis rentré en août 2002] avec une distance moyenne de 6.9916 (merci adulau ;-) <br />Des analyses mensuelles sont disponibles ici: http://keyserver.kjsl.com/~jharris/ka

<div class="plugin tightenable top">

{| border="1" cellspacing="1" cellpadding="1"
| align="left" | '''Date'''
| align="left" | '''Mean dist'''
| align="left" | '''World class'''
| align="left" | '''From Set to ID'''
| align="left" | '''From ID to Set'''
| align="left" | '''Max hops'''
| align="left" | '''Strong set'''
| align="left" | '''Average mean'''
|-
| align="left" |
[http://www.dtype.org/keyanalyze/output/200208/ 08-2002]
| align="left" | 6.9916
| align="left" | &gt;1000
| align="left" | -
| align="left" | -
| align="left" | 15
| align="left" | 14159
| align="left" | 6.5105
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-08-11/ 11-08-2002]
| align="left" | 5.7041
| align="left" | &gt;1000
| align="left" | -
| align="left" | -
| align="left" | 14
| align="left" | 14353
| align="left" | 6.5222
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-08-25/ 25-08-2002]
| align="left" | 5.6948
| align="left" | &gt;1000
| align="left" | -
| align="left" | -
| align="left" | 14
| align="left" | 14586
| align="left" | 6.5327
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-09-08/ 08-09-2002]
| align="left" | 5.6979
| align="left" | &gt;1000
| align="left" | -
| align="left" | -
| align="left" | 14
| align="left" | 14797
| align="left" | 6.5561
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-09-22/ 22-09-2002]
| align="left" | 5.6648
| align="left" | &gt;1000
| align="left" | -
| align="left" | -
| align="left" | 14
| align="left" | 14973
| align="left" | 6.5084
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-10-06/ 06-10-2002]
| align="left" | 5.6414
| align="left" | &gt;1000
| align="left" | -
| align="left" | -
| align="left" | 14
| align="left" | 15169
| align="left" | 6.5101
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-10-20/ 20-10-2002]
| align="left" | 5.6296
| align="left" | &gt;1000
| align="left" | 9
| align="left" | 12
| align="left" | 14
| align="left" | 15370
| align="left" | 6.5037
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-11-03/ 03-11-2002]
| align="left" | 5.5183
| align="left" | &gt;1000
| align="left" | 19
| align="left" | 27
| align="left" | 13
| align="left" | 15575
| align="left" | 6.5045
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-11-17/ 17-11-2002]
| align="left" | 5.4787
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 15787
| align="left" | 6.5017
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-12-01/ 01-12-2002]
| align="left" | 5.4420
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 15949
| align="left" | 6.4797
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-12-15/ 15-12-2002]
| align="left" | 5.4373
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 16174
| align="left" | 6.4806
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2002-12-29/ 29-12-2002]
| align="left" | 5.3922
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 16305
| align="left" | 6.4931
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-01-12/ 12-01-2003]
| align="left" | 5.3865
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 16474
| align="left" | 6.4804
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-01-26/ 26-01-2003]
| align="left" | 5.2183
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 16673
| align="left" | 6.4706
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-02-09/ 09-02-2003]
| align="left" | 5.2173
| align="left" | &gt;1000
| align="left" | 24
| align="left" | 27
| align="left" | 13
| align="left" | 16951
| align="left" | 6.4849
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-02-23/ 23-02-2003]
| align="left" | 4.7102
| align="left" | 496
| align="left" | 43
| align="left" | 63
| align="left" | 13
| align="left" | 17338
| align="left" | 6.4773
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-03-09/ 09-03-2003]
| align="left" | 4.7024
| align="left" | 507
| align="left" | 45
| align="left" | 63
| align="left" | 13
| align="left" | 17620
| align="left" | 6.4711
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-03-23/ 23-03-2003]
| align="left" | 4.6933
| align="left" | 500
| align="left" | 46
| align="left" | 63
| align="left" | 13
| align="left" | 17861
| align="left" | 6.4675
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-04-06/ 06-04-2003]
| align="left" | 4.6794
| align="left" | 481
| align="left" | 47
| align="left" | 63
| align="left" | 13
| align="left" | 18197
| align="left" | 6.6484
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-04-20/ 20-04-2003]
| align="left" | 4.6373
| align="left" | 367
| align="left" | 51
| align="left" | 67
| align="left" | 13
| align="left" | 19075
| align="left" | 6.6624
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-05-04/ 04-05-2003]
| align="left" | 4.6281
| align="left" | 358
| align="left" | 51
| align="left" | 67
| align="left" | 13
| align="left" | 19372
| align="left" | 6.6584
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-05-18/ 18-05-2003]
| align="left" | 4.6027
| align="left" | 330
| align="left" | 51
| align="left" | 67
| align="left" | 13
| align="left" | 19641
| align="left" | 6.6410
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-06-01/ 01-06-2003]
| align="left" | 4.6002
| align="left" | 331
| align="left" | 51
| align="left" | 67
| align="left" | 13
| align="left" | 19833
| align="left" | 6.6261
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-06-15/ 15-06-2003]
| align="left" | 4.5854
| align="left" | 335
| align="left" | 52
| align="left" | 68
| align="left" | 13
| align="left" | 20095
| align="left" | 6.6038
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-06-29/ 29-06-2003]
| align="left" | 4.5700
| align="left" | 330
| align="left" | 52
| align="left" | 68
| align="left" | 13
| align="left" | 20305
| align="left" | 6.5954
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-07-13/ 13-07-2003]
| align="left" | 4.5531
| align="left" | 327
| align="left" | 52
| align="left" | 68
| align="left" | 13
| align="left" | 20602
| align="left" | 6.5762
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-07-27/ 27-07-2003]
| align="left" | 4.5189
| align="left" | 419
| align="left" | 52
| align="left" | 68
| align="left" | 13
| align="left" | 20814
| align="left" | 6.5251
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-08-10/ 10-08-2003]
| align="left" | 4.4803
| align="left" | 440
| align="left" | 52
| align="left" | 68
| align="left" | 13
| align="left" | 21025
| align="left" | 6.4861
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-08-24/ 24-08-2003]
| align="left" | 4.4676
| align="left" | 461
| align="left" | 58
| align="left" | 75
| align="left" | 13
| align="left" | 21333
| align="left" | 6.4784
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-09-07/ 07-09-2003]
| align="left" | 4.4565
| align="left" | 462
| align="left" | 59
| align="left" | 76
| align="left" | 13
| align="left" | 21487
| align="left" | 6.4721
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2003-10-05/ 05-10-2003]
| align="left" | 4.4456
| align="left" | 482
| align="left" | 59
| align="left" | 76
| align="left" | 13
| align="left" | 21843
| align="left" | 6.4762
|-
| align="left" |
[http://keyserver.kjsl.com/~jharris/ka/2008-02-17/ 17-02-2008]
| align="left" | 4.4435
| align="left" | 1761
| align="left" | 16
| align="left" | 91
| align="left" | 14
| align="left" | 40282
| align="left" | 5.98?
|-
| align="left" |
[http://skylane.kjsl.com/~jharris/ka/2008--/ --2008]
| align="left" | 4.
| align="left" | -
| align="left" | 0
| align="left" | 0
| align="left" | 0
| align="left" | -
| align="left" | 6.
|}

</div>
<source lang=bash>
#!/bin/bash
# gpg-setstats retrieves stats about the strongset & your key
REF="http://skylane.kjsl.com/~jharris/ka"
MYKEY=${1:-"9AD7E3DB"}
for URL in $(lynx -dump $REF|grep "$REF/200"|cut -c 7-53); do
select q in "Stats for the ${URL#$REF}" "Skip" "Quit";do
if [ "$q" == "Stats for the ${URL#$REF}" ]; then
echo =======================================
echo Retrieve infos for ${URL#$REF}:
wget -O - -q ${URL}other.txt
wget -O - -q ${URL}status.txt|grep "strongly connected"
wget -O - -q $URL${MYKEY:0:2}/$MYKEY|grep "^KeyID\|^Total\|^Mean\|^Farthest"
echo -n "World Class:"
lynx -dump ${URL}top1000table.html|grep $MYKEY|grep -v kjsl
echo =======================================
break; fi
if [ "$q" == "Skip" ]; then
break; fi
if [ "$q" == "Quit" ]; then
exit; fi
echo test $URL
done
done
</source>
== Tips ==

=== Pour fetcher ttes les UIDs qui ont signé une clé ===

for key in $(gpg --list-sigs $1|grep ^sig|cut -c 13-20|sort|uniq);
do
gpg --recv-key $key
done

=== quintuple-agent ===

eval `q-agent &`
q-client put 9AD7E3DB -t 3600
or directly use '''agpg''' instead of '''gpg'''

=== Support de OpenPGP dans KMail: ===

* http://kmail.kde.org/kmail-pgpmime-howto.html

wget ftp://ftp.gnupg.org/gcrypt/alpha/aegypten/debian/libksba0_0.4.3-1_i386.deb
dpkg -i libksba0_0.4.3-1_i386.deb
wget ftp://ftp.gnupg.org/gcrypt/alpha/aegypten/debian/pinentry-gtk_0.6.3-1_i386.deb
dpkg -i pinentry-gtk_0.6.3-1_i386.deb
wget ftp://ftp.gnupg.org/gcrypt/alpha/aegypten/debian/gpgsm_0.3.9-1_i386.deb
dpkg -i gpgsm_0.3.9-1_i386.deb
gpg --rebuild-keydb-caches

Editer ~/.gnupg/gpg.conf -> use-agent <br />Dans KMail, Settings->Configure KMail->Security->Crypto Plugins et ajouter gpgme-openpgp.so plugin. <br />Laisser "update URL" vide et mettre un nom comme par ex. "OpenPGP", "location": /usr/lib/cryptplug/gpgme-opengpg.so

/usr/local/bin/gpg-kmail:

<source lang=bash>
#!/bin/bash
launch_me(){
eval "$(gpg-agent --pinentry-program /usr/bin/pinentry-gtk --no-grab --default-cache-ttl 1800 )"
kmail $* --nofork
echo $GPG_AGENT_INFO|cut -d: -f2|xargs kill
}
launch_me $* &
exit 0
</source>
=== Support of Enigmail in Firefox ===
A promising solution for webmails...
<br>See http://www.camrdale.org/GoogleSoC.html


=== Paper backup of the secret keys ===
=== Paper backup of the secret keys ===
Line 459: Line 7:


==[[Short GnuPG reference card]]==
==[[Short GnuPG reference card]]==

==[[GnuPG old notes]]==

Revision as of 21:54, 4 February 2016

Paper backup of the secret keys

apt-get install paperkey
gpg --export-secret-key key_id | paperkey

GnuPG signing parties

Short GnuPG reference card

GnuPG old notes

Retrieved from "https://wiki.yobi.be/index.php?title=GnuPG&oldid=9907"