GPG

From YM2149.org
Revision as of 17:38, 21 November 2024 by Andrzej (talk | contribs)
Jump to navigationJump to search
  • also known as GNU Privacy Guard or GnuPG
  • somewhat convenient way to manage your secrets

Config

  • ~/.gnupg/gpg-agent.conf
  • default-cache-ttl ... to lock a key after the given number of seconds if unused
  • max-cache-ttl ... to lock a key after the given number of seconds no matter what

Agent

  • gpg-connect-agent <<<help for list of commands
    • gpg-connect-agent <<<'help ...' for help on a specific command
  • gpg-connect-agent <<<reloadagent to pick up new config
    • this also forgets cached passphrases
  • gpg-connect-agent <<<'keyinfo --list' to check which keys are currently unlocked, look for a 1
    • note that all keys with the same passphrase are unlocked even if this shows just one of them is
    • gpg --list-secret-keys --with-keygrip to match the keygrips shown with your secret keys

Shell

  • gpg --edit-key ...
  • trust to make an imported public key usable for encryption
  • passwd to change the passphrase