Sept 2006 GPG Key Generation and Collection

From LILUG

• Install GPG

You must have GnuPG installed. Get it from your distro's package repository or from the GnuPG website.

• Generate the keypair

Use this command from your shell prompt:

 $ gpg --gen-key

You want to make the DSA and Elgamal key type - this will allow you to encrypt as well as sign files with your key-pair. The key-size should be anything between 2048 and 4096. The larger the key, the "more secure" it is (read: takes longer to "crack"), however the time required to sign and encrypt documents with it increases as well. Then follow the remaining on screen instructions. When the key is generated, information about it will be printed. For example, this is what I got when I made my key long time ago:

 pub   1024D/C7958FFE 2003-05-14
 uid                  Josef Sipek (Jeff) <jeffpc@josefsipek.net>
 sub   2048g/B01A7831 2003-05-14

The first hexadecimal number identifies your key. In this case, C7958FFE is my key.

• Export the public key

Use this command from your shell prompt:

 $ gpg -a --export hex_key_id > my_public_key

for example, I'd do:

 $ gpg -a --export C7958FFE > my_public_key

• Send the public key to Jeff

Then, just email the file my_public_key to me (Jeff Sipek). I will assemble them and create the list with all the keys.

Since this requires the cooperations of a number of people, please try to get your key sent by September 7th 2006 11:59pm EDT. This way, I get some time to generate the list, and people can verify it. Don't expect to have your key signed if you send it ten minutes before the talk ;)

If you have any questions, feel free to ask them here on the mailing list or email me privately.

Thanks, and keep watching the mailing list for any updates.