GPG keys and removable media

Eric Eisenhart eric at eisenhart.com
Thu Nov 14 15:34:21 PST 2002


On Thu, Nov 14, 2002 at 03:02:59PM -0800, ME wrote:
> /path/to/gpg --keyserver pgp.mit.edu --refresh-keys

Unfortunately, I seem to have an older version that doesn't support this
feature.

OTOH:
gpg --keyserver pgp.mit.edu --recv-keys `gpg --list-keys --fast-list-mode|perl -ne 'chomp;if(m:.*/([A-F0-9]+).*:){print "$1\n"}'|sort -u `

And for extra excitement: 
gpg --keyserver pgp.mit.edu --recv-keys `gpg --list-sigs --fast-list-mode |perl -ne 'chomp; if( m:([A-F0-9]{8}):) { print "$1\n" }' | sort -u`

Also, somebody was asking at the meeting about the passphrase on the private
key and what cipher it uses:
from gpg(1) manpage:

       --s2k-cipher-algo name
                 Use   name  as the cipher algorithm used to pro-
                 tect secret keys.  The default cipher  is  BLOW-
                 FISH.  This cipher is also used for conventional
                 encryption if --cipher-algo is not given.

       --s2k-digest-algo name
                 Use  name as the digest algorithm used to mangle
                 the passphrases.  The default algorithm is RIPE-
                 MD-160.  This digest algorithm is also used  for
                 conventional  encryption if --digest-algo is not
                 given.

       --s2k-mode n
                 Selects how passphrases are mangled. If n is 0 a
                 plain passphrase (which is not recommended) will
                 be used, a  1  (default)  adds  a  salt  to  the
                 passphrase  and a 3 iterates the whole process a
                 couple of times.  Unless --rfc1991 is used, this
                 mode is also used for conventional encryption.

And "gpg --version" will show you available ciphers.  In my installation
it's:
IDEA, 3DES, CAST5, BLOWFISH, RIJNDAEL, RIJNDAEL192, RIJNDAEL256, TWOFISH

Rijndael is also known as "AES".  (As in "American Encryption Standard"; the
new replacement for DES as an encryption standard.)
-- 
Eric Eisenhart                                  eric-dot-sig at eisenhart.com
Perl, SQL, Linux and Web            ^               IRC: Freiheit at freenode
Coder, Sysadmin and geek           /e\                AIM: falsch freiheit
http://eric.eisenhart.com/         ---                       ICQ: 48217244



More information about the talk mailing list