Schadenfreude » gpg

I’ve got your PGP key, hot stuff

Erik — Sun, 05 Aug 2007 06:59:00 +0000

I was listening to my music today, and I heard a line that I found hilarious coming from mainstream music. The song was Guarded by Monkeys by Cracker. It goes like this:

You are so beautiful

You should be hid deep in the jungle

On some forgotten island

I heard about you

I got your PGP key

I write you letters every day

You are so beautiful

You should be guarded by monkeys

You are so beautiful

Though, it should be GPG key IMHO ;)

Make GPG ask about cert-level

Erik — Sun, 22 Jul 2007 21:23:00 +0000

I was sad to find that my GnuPG installation wasn’t asking me about cert-level when I was tsigning keys today. To turn it on, I put the following at the bottom of my ~/.gnupg/gpg.conf:


ask-cert-level

Now, when doing tsigning, it will ask how well you checked the identity of the person whose key you are signing. Like this:


How carefully have you verified the key you are about to sign actually belongs
to the person named above?  If you don't know what to answer, enter "0".

   (0) I will not answer. (default)
   (1) I have not checked at all.
   (2) I have done casual checking.
   (3) I have done very careful checking.

Your selection? (enter `?' for more information):

Horray!

I’m the newest GSWoT GSI

Erik — Thu, 19 Jul 2007 05:01:00 +0000

I have joined the GSWoT. I am the newest Gossamer Spider Web of Trust Introducer! This is a great honor, and I’d like to thank Kara Denizi for giving me the chance to join.

Above, I’ve posted the current state of the keyring. It also includes an outlier from my personal keyring.

Props to sig2dot for creating that graph. Here’s the commands:


wget -O gswot.keyring "http://biglumber.com/x/web?keyring=5802;download=1"
sudo apt-get install graphviz imagemagick
wget http://www.chaosreigns.com/code/sig2dot/sig2dot.pl
gpg --list-sigs --keyring ./gswot.keyring | perl sig2dot.pl > gswot.dot
neato -Tps gswot.dot > gswot.neato.ps
convert gswot.neato.ps gswot.neato.jpg

Pretty easy – I might have to use this in the future for more graphs and digraphs…

OSCON GPG/PGP Key Signing Fest and CACert SSL Extravaganza

Erik — Tue, 03 Jul 2007 16:25:00 +0000

I’ll be hosting a GPG/PGP and CACert BoF at this year’s OSCON. I’m very excited. Looks like I also might become a GSWoT GSI. Amazing.

FireGPG – GnuPG in Firefox’s Gmail!

Erik — Wed, 04 Apr 2007 11:27:00 +0000

OK – a little history. I wanted to write this extension some time ago, but couldn’t figure out how to make it work. Apparently, someone has spent the time to find out, and now I have to tear apart the code to find out how they did this. Anyway, this allows you to sign and encrypt any text in Firefox using GPG. It rocks. You can use the options dialog to select the private key to use. It also has support for GMail integration using little buttons instead of the right-click menu which is always available. Here’s a preview:

Get FireGPG Here NOW!

HOWTO: Export and Import Private GPG Keys

Erik — Wed, 07 Mar 2007 19:34:00 +0000

I had a problem today. I wanted to encrypt something with my GPG Key. It was only on my laptop. Here’s what I did:


  gpg --export-secret-keys > gpgkeyfile
  gpg -c gpgkeyfile
  shred -u gpgkeyfile

Then move gpgkeyfile.gpg to another computer. To import them again:


  gpg -d gpgkeyfile.gpg > gpgkeyfile
  gpg --import gpgkeyfile


gpg: key 9140A8C7: secret key imported
gpg: key 9140A8C7: *** 1 new signature
gpg: key 5EF4A221: secret key imported
gpg: key 5EF4A221: public key *** imported
gpg: key 46C171A0: secret key imported
gpg: key 46C171A0: public key *** imported
gpg: Total number processed: 3
gpg:               imported: 2
gpg:         new signatures: 1
gpg:       secret keys read: 3
gpg:   secret keys imported: 3

Woo hoo!