====== La commande "gpg2" ======
La page de [[man de gpg2]].
===== Générer une clé =====
$ gpg2 --gen-key
La commande va demander un nom, une adresse courriel et une phrase de passe.
===== Afficher les clés =====
$ gpg2 --list-keys
===== Exporter la clé publique =====
$ gpg2 --export --armor moi@simonlefort.be
-----BEGIN PGP PUBLIC KEY BLOCK-----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=JzSo
-----END PGP PUBLIC KEY BLOCK-----
===== Importer la clé publique sur un serveur de clé =====
On peut utiliser par exemple [[http://pgp.mit.edu/|pgp.mit.edu]] et simplement coller la clé qu'on a exporté juste au dessus. On peut aussi utiliser la ligne de commande pour faire la même chose :
$ gpg2 --keyserver pgp.mit.edu --send-keys mon_id
===== Faire une recherche sur un serveur de clé =====
$ gpg2 --keyserver pgp.mit.edu --search-keys moi@simonlefort.be
gpg: data source: http://pgp.mit.edu:11371
(1) keybase.io/simonlefort
Simon Lefort (Clé de Simon Lefort)
4096 bit RSA key 95BFAB195D4EAB64, créé : 2015-01-14
Keys 1-1 of 1 for "moi@simonlefort.be". Entrez le ou les nombres, (S)uivant, ou (Q)uitter >
===== Voir les préférences de la clé et les modifier =====
$ gpg2 --edit-key adresse@mail.com
(...)
gpg> showpref
(...)
Cipher: AES256, AES192, AES, 3DES
Digest: SHA256, SHA384, SHA512, SHA224, SHA1
Compression: ZLIB, BZIP2, ZIP, Uncompressed
(...)
gpg> setpref SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed
(...)
gpg> showpref
(...)
Cipher: AES256, AES192, AES, CAST5, 3DES
Digest: SHA512, SHA384, SHA256, SHA224, SHA1
Compression: ZLIB, BZIP2, ZIP, Uncompressed
(...)
gpg> quit
Save changes? (y/N) y
===== Supprimer un couple de clé privée / publique =====
$ gpg2 --list-keys
/home/simon/.gnupg/pubring.kbx
------------------------------
pub rsa4096 2018-07-17 [SC] [expire : 2019-09-01]
124A0E657EBD1B76246515289DE43634E0D82B55
uid [ ultime ] Simon Lefort
sub rsa4096 2018-07-17 [E] [expire : 2019-09-01]
$ gpg2 --delete-secret-keys 124A0E657EBD1B76246515289DE43634E0D82B55
gpg (GnuPG) 2.2.4; Copyright (C) 2017 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
sec rsa4096/9DE43634E0D82B55 2018-07-17 Simon Lefort
Faut-il supprimer cette clef du porte-clefs ? (o/N) o
C'est une clef secrète — faut-il vraiment la supprimer ? (o/N) o
$ gpg2 --delete-keys 124A0E657EBD1B76246515289DE43634E0D82B55
gpg (GnuPG) 2.2.4; Copyright (C) 2017 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
pub rsa4096/9DE43634E0D82B55 2018-07-17 Simon Lefort
Faut-il supprimer cette clef du porte-clefs ? (o/N) o
$ gpg2 --list-keys
gpg: vérification de la base de confiance
gpg: aucune clef de confiance ultime n'a été trouvée
===== Sources =====
* [[https://www.apache.org/dev/openpgp.html|apache.org (openpgp)]]
* [[http://www.linuxembedded.fr/2017/09/initiation-a-gnu-privacy-guard/|Une très bonne introduction (rappel?) à GPG (linuxembedded.fr)]]