Those of you who created your keys and didn't upload them yet, you should upload them to: http://biglumber.com/x/web?keyring=4480 and/or preferrably send them to a public keyserver: gpg --keyserver=subkeys.pgp.net --send-keys <your-key-id(s)> so that we can sign them! After you have received signatures from people encrypted to your email address(es), import all of them, one at a time to your keyring: gpg --import <decrypted-email-with-your-signed-key> (In Mutt this is really easy--just view the attachement and hit "| gpg --import" to pipe the attachment through gpg) and then send them back to a public keyserver again so other people can see/use those signatures by refreshing their own keyring: gpg --keyserver=subkeys.pgp.net --send-keys <your-key-id(s)> gpg --keyserver=subkeys.pgp.net --refresh-keys On Wed, Sep 11, 2013 at 04:55:15PM -0400, Eric Martin wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
Hi All, I forgot to mention that you should print out your fingerprint and bring it to the meeting, to make sure that the one I have on file for you is the correct one. If you aren't able to pre-register, print out 15 copies or so to hand out to people at the meeting. You can get the fingerprint by typing
gpg --list-secret-keys | grep ^sec For me, this is 146797fa. Yours will be different.
gpg --fingerprint KEYID
I'm looking forward to seeing everybody there. We'll have a short talk on the how and why of PGP, then we'll adjourn to Tech Pizza for dinner.
On 9/11/13 10:37 AM, Chuck Anderson wrote:
Now is a good time to check if your key is expired and/or is using a weak algorithm or key size, and generate a new key if necessary.
I followed the steps here to start a transition from an ancient 1024D (DSA 1024-bit) key to a modern 4096R (RSA 4096-bit) key:
http://www.apache.org/dev/key-transition.html
See you all tonight!
Just a reminder that this week I'll be giving a talk on PGP and running a key signing. Please upload your public key to the keyring before the meeting to register for the key signing. It is possible to participate without registering but it's a lot easier if you register.
Please don't hesitate to ask if you have any questions.
On Thu, Aug 29, 2013 at 11:53 PM, Eric Martin <eric.joshua.martin@gmail.com>wrote:
On Wednesday, September 11th 2013 I'll be running a PGP Key Signing
On Sun, Sep 08, 2013 at 10:48:00PM -0400, Eric Martin wrote: party. PGP stands for Pretty Good Privacy and was developed by Phil Zimmerman in 1991 for secure communications. Signing keys allows you to say that you trust somebody's key, and extends the Web of Trust which helps everybody.
To participate, please bring your public key's fingerprint, and at least (2) forms of ID (Government issued photo ID is the best way to go). If you don't yet have a public key, follow the directions for 'Preparing for the Party' from this [1] Key Signing Party HOWTO.
Additionally, please upload your public key to our keyring for this event here [2]. I'll give a brief talk on PGP, and then we'll go through everybody's keys.
What not to bring: A computer. Keys are signed at home, we just verify them at the Key Signing.
[1]
http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html...