GPG keys and removable media
Eric Eisenhart
eric at eisenhart.com
Thu Nov 14 15:34:21 PST 2002
On Thu, Nov 14, 2002 at 03:02:59PM -0800, ME wrote:
> /path/to/gpg --keyserver pgp.mit.edu --refresh-keys
Unfortunately, I seem to have an older version that doesn't support this
feature.
OTOH:
gpg --keyserver pgp.mit.edu --recv-keys `gpg --list-keys --fast-list-mode|perl -ne 'chomp;if(m:.*/([A-F0-9]+).*:){print "$1\n"}'|sort -u `
And for extra excitement:
gpg --keyserver pgp.mit.edu --recv-keys `gpg --list-sigs --fast-list-mode |perl -ne 'chomp; if( m:([A-F0-9]{8}):) { print "$1\n" }' | sort -u`
Also, somebody was asking at the meeting about the passphrase on the private
key and what cipher it uses:
from gpg(1) manpage:
--s2k-cipher-algo name
Use name as the cipher algorithm used to pro-
tect secret keys. The default cipher is BLOW-
FISH. This cipher is also used for conventional
encryption if --cipher-algo is not given.
--s2k-digest-algo name
Use name as the digest algorithm used to mangle
the passphrases. The default algorithm is RIPE-
MD-160. This digest algorithm is also used for
conventional encryption if --digest-algo is not
given.
--s2k-mode n
Selects how passphrases are mangled. If n is 0 a
plain passphrase (which is not recommended) will
be used, a 1 (default) adds a salt to the
passphrase and a 3 iterates the whole process a
couple of times. Unless --rfc1991 is used, this
mode is also used for conventional encryption.
And "gpg --version" will show you available ciphers. In my installation
it's:
IDEA, 3DES, CAST5, BLOWFISH, RIJNDAEL, RIJNDAEL192, RIJNDAEL256, TWOFISH
Rijndael is also known as "AES". (As in "American Encryption Standard"; the
new replacement for DES as an encryption standard.)
--
Eric Eisenhart eric-dot-sig at eisenhart.com
Perl, SQL, Linux and Web ^ IRC: Freiheit at freenode
Coder, Sysadmin and geek /e\ AIM: falsch freiheit
http://eric.eisenhart.com/ --- ICQ: 48217244
More information about the talk
mailing list