GPG basic file encryption doesn’t required public/private key. But to make a encrypted file more secure you can use RSA/DSA algorithms. These algorithms generates public and private keys to encrypt file.
Creating GPG Keys Using the Command Line Use the following shell command: $ gpg2 -gen-key This command generates a key pair that consists of a public and a private key. Nov 14, 2019 GPG uses public key encryption wherein you create a key pair: one private or secret key you keep to yourself and one public key you share with your correspondents or the world. The important part of this two-key system is that neither key can be calculated by having the other. In some cases you may need to generate and manage GPG keys on Ubuntu Linux servers or desktops As you may already know, GPG encryption helps keep files save and secure Using GPG encryption to encrypt your data before transfer ensures that they will not be viewed or read by anyone without a valid matching key pair.
This article will help you to do following three tasks for File Encryption using GPG Key Pair in Linux.
- Create key pair
- Encrypt/Decrypt file locally for same user account.
- Encrypt file for other user.
- Decrypt other users file.
Step 1: Create GPG Key Pair
The very first step is to generate key pair. Use the following command to generate gpg key pair.
Output:
Step 2: Encrypt/Decrypt File Current User
Encrypt file for single user only. No one other can decrypt this file.
–recipient name should be same as used in key generation. Above command will automatically generate a encrypted file named tecadmin.txt.gpg
Decrypt your own file tecadmin.txt.gpg
–output or -o is used to specify output file name. Above command will prompt for passphrase used in key pair.
Step 3: Encrypt File for Other User
Use #1 steps to generate encrypted file. Finally share your public key and encrypted file ( tecadmin.txt.gpg ) with other users. To export your public key use following command.
Check your public key. It should be like below
Step 4: Decrypt Other Users File.
To decrypt other users file, It required public key of that user. Import that public key to your account using below command. For example other users public file is otherpub.txt
Make sure that file has been imported successfully using below command.
Above command will show all public key in your account. Make sure the other users public key also exist there.
Now you can decrypt the other users file using below command
Do you have a file or message you want to keep private? To keep them safe, you should use GPG encryption keys. If you are running Linux, encrypting files with GPG is easy, provided you have GnuPG installed.
Today's article will show you how to create GPG keys in Linux with just a few simple terminal commands.
Instructions for creating GPG key in Linux
- Install GnuPG
- Create pairs of GPG keys
- Revoke the key
- Export public key to a file
- Export public key to keyserver
- Encrypt and decrypt files
- Rest assured with GPG encryption!
Install GnuPG
You need to start by installing GnuPG first. For distributions based on Debian or Ubuntu, open a terminal and run:
Linux distributions using DNF or YUM (like Fedora) will run the following command:
Or:
If you are running Arch, install GnuPG with the following command:
You can also download the source code here and compile it yourself if you like.
Create pairs of GPG keys
When GnuPG is installed, you will need to create your own GPG key pair, including a private and a public key. Private key allows you to decrypt or encrypt files and create signatures with that private key itself.
The public key you share can be used to verify that the encrypted file actually comes from you and is created with your own key. Public keys can also be used by others to encrypt files for you to decrypt.
To create this private and public key pair, open the terminal and enter the following command:
This command will start creating private folders and public keys. You will be asked to enter your full name and email address. Do that and press
Enter
.Picture 1 How to create GPG key in Linux download this picture HERE
You will be asked to confirm your choice, edit or exit. Select the option you want and press
Enter
.Before the key is created, you will need to provide a secure passphrase. Enter the passphrase and press
Enter
.Picture 2 How to create GPG key in Linux download this picture HERE
It may take some time for your key to be created. Once done, you will see a confirmation message.
Picture 3 How to create GPG key in Linux download this picture HERE
Revoke the key
If for some reason, you need to revoke your key, run the following command:
uid is User ID. For example, you can use your email address here. This will create a revocation certificate (you will need to provide a password to do this). You need to give a reason, choose one of the options numbered from 0 to 3 .
Picture 4 How to create GPG key in Linux download this picture HERE
You can do this immediately after you create your key. Your certificate will be exported as a file - in this case, the file named 'revoke.asc'.
Export public key to a file
To share your file or message with others, you will need to share your public key, ie export it from your computer. To export your public key to a file, open a terminal and enter:
If you want the key in readable format (eg ASCII in a text file), run the following command:
After that, you can open this file with any standard text editor.
Export public key to keyserver
You can make your public key easily share and search, by registering it to the keyserver, a public key store. For example, you can use the MIT archive (reference link: https://pgp.mit.edu/) to synchronize your key with other repositories.
First, find the Key ID by opening a terminal and entering:
Locate the key and note the last 8 digits of the User ID (fingerprint of User ID). For example: B852 085C.
Picture 5 How to create GPG key in Linux download this picture HERE
Use the 8-digit User ID to find and enter the following information (replace B852 085C with your own ID):
The public key will then be registered with the keyserver, where others can find and enter it. Remember, there is no problem sharing a public key. It cannot be used to decode files or messages but can be used to encrypt them before sending them to you and only you can decrypt them.
Encrypt and decrypt files
To encrypt a file, open a terminal and run the following command:
You can replace the recipient email with the key fingerprint if you like. Replace the output and input file names with the files you will encrypt, as well as your own output files.
![Gpg Generate Key Pair Linux Gpg Generate Key Pair Linux](/uploads/1/2/6/0/126071700/591087936.png)
Picture 6 How to create GPG key in Linux download this picture HERE
To decrypt the file, run the following command:
You will be asked to provide a passphrase to allow access to private keys and file decoding. After that, the decrypted content will be exported as a file, listed under the --output flag .
Rest assured with GPG encryption!
In an ideal world, you won't need to worry about encrypting your sensitive files. However, the real world is not ideal at all. If you're worried about prying eyes, GPG encryption will keep your files, messages and emails safe.
If you use Windows, you can encrypt your files with Powershell or Gpg4win.
If you have coding tips or want to share with everyone, leave comments in the comment section below!
Maybe you are interested
Generate Gpg Key Windows
How to get back the lost Windows Key or Office?
Gpg Generate Key Pair Linux Code
If you're trying to reinstall Windows with a genuine KEY but can't find the key to activate , you're lucky enough to be able to find it again in the Registry, but you can't go directly to the Registry and copy it anyway. out. So in this article, I will show you how to get them back. As you can see in the picture above, your Windows active key is stored in the registry called DigitalProductId , but...Read more »