Part 1: Installing the Software
We’ll be using GnuPG with Gnu Privacy Assistant. GPA is good as a graphical front-end because its layout is really easy to understand and follow.
- Open up Terminal
- Type, without quotes, ‘sudo apt-get install GPA gnupg2’, then hit ‘enter’
- Enter your password, hit ‘enter’
- It will pull the dependencies needed for both to work properly, tell you the space needed, and ask you to confirm. Type ‘y’ then hit ‘enter’ to confirm
- Wait a bit as everything installs
This should only take a few minutes to complete.
Part 2: Generating Your Keypair
The next step is to create your key pair. We’ll be using 4096 bit RSA to keep things extra secure.
1. In the Terminal type:
2. Hit the “enter” key.
3. When it asks what kind of key you want, choose option “1.”
4. Next step is the key length. The longer the length, the more secure it is. We’ll go with 4096 bits.
5. It will now ask if you want your key to expire after a certain amount of time. This is up to personal preference, but we will choose “key does not expire” for the sake of this tutorial, so just hit the “enter” key.
6. Confirm that the key will not expire by typing “y” then hit “enter.”
7. The next step will be to enter an ID to make it easier for people to identify your key. If you’ve made it this far, you should know what to do.
8. It will ask if this information is correct. If it is, type “O” and hit “enter.”
9. Here is a great XKCD comic on creating secure passphrases.
10. Enter a passphrase to protect your secret key.
11. Here comes the fun part. It’s going to generate your key and will ask you to do some random stuff to create entropy. I like to have a Youtube video going on a torrent running in the background, while randomly mashing keys in a text editor. See the picture for an example of what will be output in the terminal.
12. Now you are done.
Part 3: Obtaining Your Public Key
So we’ve installed the software, generated our super secure key pair. Now what? Well if you want to actually use it we need to obtain our public key. Everything from here will be done through the graphical front-end.
1. Open Terminal and type:
2. Hit “enter.” Type in your password.
3. You will be greeted by this beautiful window.
4. Click on the keypair you just created, click “Keys” up at the top, then “Export keys.”
5. Select where you want it saved, enter a filename, and click “Save.”
6. Browse to the location in your file manager, open up that file with a text editor. There’s your public key! Don’t forget to put this on your market profile so people can contact you easier.
Part 4: Obtaining Your Private Key
If you ever want to switch operating systems or PGP programs, you’ll need to do this. It’s just as easy as obtaining your public key. Make sure you keep this file safe.
1. Hopefully, you still have GPA open. If not, follow step number one of part number three.
2. Click on your keypair, click “Keys” up at the top then “Backup.”
3. Select where you want it saved, keep the filename it gives you, and click “Save.”
4. A window will pop up, you can back up to a floppy if you’re stuck in the ’80s.
Remember to keep this file safe! Don’t forget your passphrase!
Part 5: Importing a Public Key
So you want to buy some dank marijuana, you’ll need to encrypt your message unless you want LE kicking down your door and putting a boot to your throat. How is this done? Easy!
1. Obtain the recipients public key, which can hopefully be found on their profile.
2. Copy everything, paste into a text editor, save it somewhere.
3. Up at the top, click “Keys” then “Import key.”
4. Select the key, then click “Open.” You’ll see this window.
5. This part is now done.
Part 6: Importing a Private Key
You finally realized that Microsoft/Apple is spying on you, and want to switch to an operating system that respects your right to privacy. How do you bring your key over?
1. Up at the top, select “Keys” then “Import Keys.”
2. Select your backup, it should have a file extension of .asc.
3. The above window will appear.
4. Your key has now been imported.
Part 7: Encrypting a Message
GPA makes this easy as pie. Seriously, if you still can’t do it after following the below steps you shouldn’t be here.
1. Click ‘Windows’ at the top, then “Clipboard.”
2. This beautiful window will appear.
3. Type in your message.
4. Click the envelope with the blue key.
5. Select the recipient of the message, sign it with your key if you want, then click “Ok.”
6. Your encrypted message will now appear in the buffer. Copy everything and send this to the recipient.
Part 8: Decrypting a Message
You sent your message, and the vendor responded! Now what? You’ll want to decrypt the message with your public key.
1. Copy everything the vendor sent you, paste it into the buffer.
2. Click the envelope at the top with the yellow key.
3. Enter your passphrase.
4. Read your message.
There we have it, an easy to follow PGP guide for Linux with pictures! PGP can be overwhelming at first, but with persistence and the willingness to learn anyone can do it. Hopefully, this guide will keep you guys safe on the DNM! I’ll have an OS X guide coming soon, and possibly a Windows guide following that. Any and all constructive feedback is appreciated, as well as suggestions for other guides!