<h1 id="gnupg">GnuPG<a aria-hidden="true" class="anchor-heading icon-link" href="#gnupg"></a></h1>
<p>GnuPG is an <a href="/notes/d7074fea-4915-40bd-aae7-019f75dfc572">open source</a> OpenPGP implementation.</p>
<h1 id="concepts">Concepts<a aria-hidden="true" class="anchor-heading icon-link" href="#concepts"></a></h1>
<ul>
<li><strong>Armoured</strong> keys are base64-encoded and wrapped at 76 characters to make them easier to copy and paste.</li>
<li><strong>Dearmoured</strong> keys are in a binary format and are not wrapped.</li>
</ul>
<h1 id="generating-keys">Generating keys<a aria-hidden="true" class="anchor-heading icon-link" href="#generating-keys"></a></h1>
<p>The following will prompt for a full name and email address. The resulting key will be stored in the trust <abbr title="Database">DB</abbr>.</p>
<pre class="language-console"><code class="language-console">gpg --gen-key
</code></pre>
<h1 id="exporting-keys">Exporting keys<a aria-hidden="true" class="anchor-heading icon-link" href="#exporting-keys"></a></h1>
<p>Public keys can be shared to verify signatures and allow encrypting files for only your consumption:</p>
<pre class="language-console"><code class="language-console">gpg --output public.key --armor --export some@email
</code></pre>
<p>Private keys should be exported only if the key was generated for the purpose of authentication on another system, or for backup:</p>
<pre class="language-console"><code class="language-console">gpg --output private.key --armor --export-secret-key some@email
</code></pre>
<h1 id="importing-keys">Importing keys<a aria-hidden="true" class="anchor-heading icon-link" href="#importing-keys"></a></h1>
<p>Regardless of public/private, it's always just <code>--import</code>:</p>
<pre class="language-console"><code class="language-console">gpg --import public.key
gpg --import --allow-secret-key-import private.key
</code></pre>
<hr>
<strong>Children</strong>
<ol>
<li><a href="/notes/bci5mxhe1wzsiprus48fn6h">Pinentry macOS</a></li>
<li><a href="/notes/p8x4128bt98vk5zcnqkwaa1">waiting for lock (held by $pid)</a></li>
</ol>
<hr>
<strong>Backlinks</strong>
<ul>
<li><a href="/notes/733c2969-087b-4a0a-b01b-2a4ca4d49578">git-crypt (public)</a></li>
</ul>

GnuPG


![Digital brain](assets/images/logo.svg){display: block, margin: 0 auto, max-height: 50vh}

Hi, I'm Luke 👋

I'm a software engineer turned site reliability engineer. I'm currently big on knowledge management and learning.

# Find me elsewhere

- [👨‍💻 DEV](https://dev.to/lukecarrier)
- [🚢 GitHub](https://github.com/LukeCarrier)
- [👔 LinkedIn](https://www.linkedin.com/in/lukecarrier/)
- [📄 Résumé](https://github.com/LukeCarrier/resume)
