Object Mentor Blog: Secure Email with GnuPG

Secure Email with GnuPG

Ben Rady — Thu, 23 Aug 2007 09:52:00 -0500

So you need to send someone the root password to your webserver? You should just put it in an email and send it to them, right? Well, actually, no…that’s a profoundly bad idea. Here’s how you can use GPG to securely send passwords (and other sensitive information) though email.

Public key encryption allows people to send secure messages to each other without exchanging pre-determined passwords. GnuPG is an open source implementation of a public key encryption system called OpenPGP. Other public key systems exist, but GnuPGP is both free and Free, so that’s what we’ll be using for this example.

First, you get to install GnuPG. If your operating system has a package manager such as apt or MacPorts, it’s generally as simple as:

sudo port install gpg

Creating a Key Pair

Now that we have it installed, lets generate a key pair. Key pairs allow others to encrypt messages to us using our public key, which we can then decrypt using our private key. Doing this in gpg is simple, just type:

gpg --gen-key

GnuPG will then ask a set of questions, including a passphrase, name, and email address. The default values it uses for the key settings are generally acceptable. GnuPG will then generate a key and add it to our keyring, which holds all our known public and private keys. To see the contents of the keyring, we type:

>gpg --list-keys
pub   1024D/A4D1213F 2007-08-23
uid                  Ben Rady <brady@objectmentor.com>
sub   ...

GnuPG then spits out the public and private key ID’s. Now that we have a key pair, we can decrypt messages sent to us. But how will anyone get our public key to encrypt messages? Well, we could export our public key and post it on our website. Or we could just email it to everyone we know. However, there are also numerous key servers around the Internet that host public keys, such as the MIT key server, and we can post our key to one of them. To do so, we type:

gpg --keyserver pgp.mit.edu --send-keys A4D1213F

Sending Encrypted Messages

So once the receipent has generated a key pair and made their public key available, we can send them a secure message. First, we need to import their public key into our keyring:

gpg --keyserver pgp.mit.edu --recv-keys A4D1213F

If you don’t know the key ID that you want to import, the MIT keyserver has a search function that will search by name or email address. However, it’s important to verify that the key you find in the search is really the public key of your intended recipient. Once we do that we (generally) should mark the key as trusted by typing:

gpg --edit-key brady@objectmentor.com
Command> trust
Please decide how far you trust this user to correctly verify other users' keys
(by looking at passports, checking fingerprints from different sources, etc.)

  1 = I don't know or won't say
  2 = I do NOT trust
  3 = I trust marginally
  4 = I trust fully
  5 = I trust ultimately
  m = back to the main menu

Your decision? 5

Now, we can create a message and encrypt it:

echo 'Secure Message' | gpg -e -r brady@objectmentor.com > secure.gpg

We could have just as easily encrypted one or more files by passing them as parameters to GnuPG. We also could have included multiple recipients. Now we can safely email our secure message (stored in the secure.gpg file) to the recipient.

Receiving Encrypted Messages

When someone sends us an encrypted message, decrypting it is easy.

> gpg -d secure.gpg
gpg: encrypted with ...
      "Ben Rady <brady@objectmentor.com>" 
Secure Message

And there’s our secure message. Kept safe from the prying eyes of the Internet.

"Secure Email with GnuPG" by investment

Sat, 24 Dec 2011 07:21:55 -0600

This is a very well written articles. I will be sure to bookmarks it and return to read mores of your useful.

"Secure Email with GnuPG" by moncler

Fri, 23 Dec 2011 18:50:40 -0600

Many people in the fashion of the current is the barrel epoch reliable appreciation of MONCLER coats to enjoy a unique and elegant dreams.Moncler You try something and uniqueness of our own personality, a charming simplicity. The sense of beauty and style certainly compel visits famous name wears jacket of course design and development of printing many of your peers.

Is one of the advantages of the personality of your body temperature according to the season it usually requires will enhance the charm of the maintenanceMonkuredaun. Attractive dressing useful unique expression. Stylish people their best in Montclair provided may include the lovely jacket can be appropriate current product needs. The rest with confidence, the natural diversity of this stuff, and may affect only. These stylish wear designs top quality.

"Secure Email with GnuPG" by ferragamo outlet

Mon, 19 Dec 2011 07:35:21 -0600

by way of your nice content, will help me to do so sometimes.

"Secure Email with GnuPG" by music production

Fri, 16 Dec 2011 07:12:50 -0600

Reading by way of your nice content, will help me to do so sometimes.

"Secure Email with GnuPG" by wellnesshotel

Wed, 14 Dec 2011 03:45:19 -0600

This is a great way to have a secure internet connection and sent important mail.

"Secure Email with GnuPG" by otel

Fri, 09 Dec 2011 18:12:25 -0600

Acnezine, Natural Pain Relief, Hoodia Gordonii, Breast Actives, Lip Plumper

"Secure Email with GnuPG" by christian louboutin

Thu, 03 Nov 2011 10:05:33 -0500

The professional design make you foot more comfortable. Even more tantalizing,this pattern make your legs look as long as you can,it will make you looked more attractive.Moveover,it has reasonable price.If you are a popular woman,do not miss it.

Technical details of Christian Louboutin Velours Scrunch Suede Boots Coffee:

Color: Coffee
Material: Suede
4(100mm) heel
Signature red sole x

Fashion, delicate, luxurious Christian louboutins shoes on sale, one of its series is Christian Louboutin Tall Boots, is urbanism collocation. This Christian louboutins shoes design makes people new and refreshing. Red soles shoes is personality, your charm will be wonderful performance.

"Secure Email with GnuPG" by Dallas Web Designer

Wed, 19 Oct 2011 16:09:13 -0500

Secure email, geting a pair key and sending/receiving encrypted messages is all very valuable. Thank you.

"Secure Email with GnuPG" by Ashley Bowling

Sun, 16 Oct 2011 05:38:05 -0500

Chinese, Korean, and Japanese civilizations had discovered the principle of the closed stove much earlier than the West.

"Secure Email with GnuPG" by Mobile Media

Tue, 11 Oct 2011 04:43:28 -0500

thanks for the great post, it was a really good read.

"Secure Email with GnuPG" by MBT Baridi

Fri, 16 Sep 2011 22:32:50 -0500

It is often detailed that should “ 50 ‘ soon after the” equipped coupled with encouraged together with the Fang-Fang Li, Liu Dong, Huang Ming brand-new legend handsetJimmy Choo Escarpins sandales. Fang-Fang Li were able to move on as a result of Ny University College student Bank concerned with Training video Attempting Business while in the the front without the need of hand back is often Ang Protect; Jimmy Choo Tall Bootsyour ex-girlfriend compact popularity, ‘07 ages youngster exactly who manufacture timeless tomes, “ 17-year-old yowl, ” Jimmy Choo Tall Bootscoupled with made use of within 10 types considering the exact make concerned with its TV cord, prevalent watch, the following turned sailing the initial accolade reward along with the Enthusiastic Head limitation Reward

the north face

At this juncture a person’s preparation while in the program “ 50 ‘ after” the next concerned with 2007 have been remaining picked up all over Tokyo, “ Asian Youngster

north face jakke

program. ” “ 50 ‘ soon after the” Liu Dong Chen XingchenDiscount Ugg Boots |Discount Ugg Boots gamed outside together with the business expansion considering 1980s track record while in the big vary arrangement China’ ersus marvelous improvements all over couple of a long time, signifying business expansion concerned with 50 youngster right after track record utilizing their love, conduct coupled with likelihood so you might impressive symptoms.canada goose This amazing news flash press reporter determined this, “ 50 ‘ after” is going to be launched all over Tiongkok all over past due Augustcanada goose jakke.

"Secure Email with GnuPG" by WCR Internet Marketing

Wed, 14 Sep 2011 23:51:47 -0500

Thanks for the post. I’ve been looking for information on that and your explanation actually made sense. Cheers, Kat

"Secure Email with GnuPG" by Diablo3

Wed, 14 Sep 2011 13:20:21 -0500

Blog posts about wedding and bridal are always rare to find , at least with great quality,you qualify for a great blog post writer title,kep the great job happening

"Secure Email with GnuPG" by discounted mulberry handbags

Tue, 06 Sep 2011 21:31:52 -0500

With the availability of a huge selection of Mulberry handbag, it is possible to effortlessly obtain the top Mulberry handbag that may well match your outfit and your individuality being an entire.

"Secure Email with GnuPG" by beats by dre store

Tue, 23 Aug 2011 03:36:30 -0500

via kathodische bescherming is een van onze specialiteiten. Voor meer informatie over betonreparatie, neem dan contact met ons ophigh quality headphones new design headphones

"Secure Email with GnuPG" by Bowtrol

Mon, 08 Aug 2011 17:03:30 -0500

hmm ,i’m not sure if this is what i’m looking for but anyway this is interresting and could be useful some day,thanks for taking time to write such cool stuff

"Secure Email with GnuPG" by beats by dr dre headphones

Wed, 08 Jun 2011 21:02:05 -0500

I attempted these Beats by dr dre studio out in several genres thinking about which i listen to an eclectic mix Beats by dr dre solo. A all natural suit With Solos, you really feel the music, not the Monster Beats By Dr. Dre Pro Headphones Black.

"Secure Email with GnuPG" by shoes christian louboutin

Wed, 18 May 2011 23:59:39 -0500

and thank you karl for linking this passage. It was worth my time. Let’s go to the Roo soon.

"Secure Email with GnuPG" by f350 leveling kit

Tue, 17 May 2011 12:46:27 -0500

I really love the way information presented in your post. I have added to you in my social bookmark and i am waiting your next post. Thanks for your sharing on this blog…

"Secure Email with GnuPG" by leveling kit f250

Tue, 17 May 2011 12:41:59 -0500

Very nice post. I really liked to read it your very informative article in this blog. Thank you for your sharing….

"Secure Email with GnuPG" by leveling kit ford

Tue, 17 May 2011 12:29:44 -0500

Thank you for this good post, I like it your wonderful information. God Bless!!!!

"Secure Email with GnuPG" by ford leveling kit

Tue, 17 May 2011 12:25:55 -0500

This is such a good information. Keep posting useful and informative articles. Thank you very much for your providing good information on this blog….

"Secure Email with GnuPG" by ghd australia

Fri, 29 Apr 2011 01:08:38 -0500

should just put it in an email and send it to them, right? Well, actually, no…that’s a profoundly bad idea. Here’s how you can use GPG to securely send passwords (and other sensitive information) though email.???

"Secure Email with GnuPG" by okey oyunu oyna

Wed, 27 Apr 2011 11:02:34 -0500

nice code…

internette görüntülü olarak okey oyunu oyna, gerçek kisilerle tanis, turnuva heyecanini yasa.

"Secure Email with GnuPG" by cheap costume jewelry

Thu, 21 Apr 2011 02:16:08 -0500

When searching for flower cocktail rings, your first stop would be online at retail stores that deal in cheap fashion jewelry where you can find black cocktail rings, pink cocktail rings, blue cocktail rings, as well as the popular yellow cocktail ring to complete your outfit.