| 修订历史 | ||
|---|---|---|
| 修订 0.5 | 2002/9/04 | jiangxin |
| 增加用PGPDISK进行磁盘加密 | ||
| 修订 0.4 | 2002/9/03 | jiangxin |
| 增加PGP公钥管理 | ||
| 修订 0.3 | 2002/2/25 | jiangxin |
| Windows XP 和 PGP兼容性问题 | ||
| 修订 0.2 | 2002/2/22 | jiangxin |
| 增加简介和PGP GUI和CLI共存 | ||
| 修订 0.1 | 2002/2/20 | jiangxin |
| PGP/GPG Howto | ||
摘要
PGP/GPG 是不对称加密、数字签名的经典和标准,不但可以为个人的数字传输提供信用保障, 用于保护个人之间通讯的隐私,保护敏感数据,而且可以在更大的范围内,如公司范围内的 数据加密,电子产品(软件)的数字签名,知识产权保护等。
本文介绍PGP/GPG软件的使用技巧等。
(编译自版本: dc50d4f,最后更新时间: 2007-06-19)
目录
-
一些废话
PGP/GPG作为数字签名软件的标准,已经存在多年。它不但可以为公司、个人之间重要 的隐私保护手段,更为重要的是,可以为我们出版的软件、内核等电子产品进行数字签名, 防止被篡改,最大程度保障了信息安全。
但是为防止公钥欺骗、保证公钥的不可否认性(Non-repudiation),我们需要一种机制 来管理和发布我们的公钥。
-
公钥的维护
可以将公钥用版本控制系统维护和收集,并定期更新到 FTP 服务器中发布。
-
注意事项
-
建立有过期保护的公钥
加入过期机制,千万不要建立永不过期的公钥,以免私钥泄漏或丢失,想撤销公钥都不可能。
-
备份你的私钥
如果私钥丢失,则无法打开以前加密的文件。而且即使知道私钥被他人滥用,也无法使自己的公钥过期。
-
为私钥加上口令保护
这样即使私钥被人拷贝,还有一层保护啊。阿弥陀佛!
-
为公钥建立信任网络
由公司权威人士为大家的公钥签名并发布到网络签名的ldap公共服务器中。 对此权威人士公钥的信任,会自动验证其他人的公钥。
-
-
资源列表
在 BSD 上成功安装了 gpg 1.0.6;在 WINDOWS 2K 上实现了PGP命令行,PGP图形界 面,GPG 1.0.6的安装和共存。
建议在windows 2000上安装PGP 6.0.2版本,因为这是免费包含PGPDISK(加密磁盘)的最后一版。
![[警告]](/docbook/includes/images/docbook/warning.png) |
|
|
Windows XP 和 PGP 7.0.3 (for WIN2000) 存在严重的兼容性问题,甚至会导致系 统重装!安装前请参见 FAQ。 PGP6.0.2 存在BUG:“Installation of Outlook Express plugin fails. (The OE plugin does not work with OE 5! )”。 参见:http://www.pgpi.org/doc/bugs/win/ |
基于不对称加密的 PGP 加密、签名固然是安全的,但如何能够保障你获取的公钥就是其所声明的 本人的 KEY?
PGP 的公钥,一般是保存在 Certserver 中,当 PGP 在需要时,会自动连接到服务器中获取。当然 还有一种方法,就是放在Web/Ftp服务器中,以只读方式下载获取。
当 import 一个人的公钥时,默认是不予信任,需要通过传统手段(电话、信件等)确认,然后在 对该公钥签名,完成对一个公钥的信任。对该公钥的签名可以是 public, 亦可以是 private 的。
当设置了一个KEY的信任度后,该KEY签署的KEY会被自动 valid。
公钥管理示意图
图形化界面的优点是集成性、易用性好;命令行方式的WINDOWS版本同UNIX版本, 适合高级用户,适合自动化执行。
但基于如下原因,必须使用命令行。
图形界面的PGP不能用于商业应用,而GPG不受限制。
使用GnuPG(gpg)的目的也是源于此。由于RSA,IDEA等算法在美、加的专利注册,使得我们在商业场合使用公开的算法技术成为必须。而gpg在这方面做的最好。
-
设置PGP命令行的主目录(适用于WINDOWS和UNIX)
PGP Command Line 6.5.8 for NT Freeware
-
PGPPATH
The first time you start PGP, the software checks to see if the environment variable PGPPATH is defined. If PGPPATH is defined, the software puts the PGP preferences file, keyring files, pgp.cfg, and the randseed file in the %PGPPATH% directory.
-
USERPROFILE
If PGPPATH is not defined, the software checks to see if the environment variable USERPROFILE is defined. If USERPROFILE is defined, the software puts the files in the %USERPROFILE%\Application Data\pgp directory.
If USERPROFILE is not defined, the software puts the files in %SYSTEMROOT%\pgp.
The randseed file is always placed in the %SYSTEMROOT% directory on Windows NT, and "%PGPPATH%/randseed.rnd" on UNIX.
-
-
PGP图形界面的主目录
PGPfreeware 7.0.3
通过 Options-->Files, 重新设置各个项的位置,使和命令行版本保持同一。 上述两个版本的PGP配置文件结构相同。这样很方便实现两者的同步。
本人仅在PGPfreeware 7.0.3和PGP Command Line 6.5.8做过试验,请自行斟酌。
GPG配置文件和PGP不相同,切勿照此办理,后果自负。
-
导入公钥
$ pgp -kxa <userid> > <userid.asc> $ gpg --import < <userid.asc>
or
$ pgp -kxa <userid> | gpg --import
测试
$ echo 'Hello Friend!' | gpg -ear <userid>
-
导入公钥和密钥
-
导入公钥
$ pgp -kx <userid> | gpg --import
-
去掉PGP密钥的加密口令 (NO LONGER REQUIRED!)
$ pgp -ke <userid>
-
Export private key into GnuPG
$ gpg --armor --export-secret-keys --secret-keyring ~/.pgp/secring.skr <userid> > mykey.sec $ gpg --import --allow-secret-key-import < mykey.sec
-
Set passphrase on both keys IMMEDIATELY
$ pgp -ke <userid> $ gpg --edit-key <userid>
-
Test key.
$ echo 'hello world' | pgp -er <userid> | gpg --decrypt
-
-
去掉密钥口令加密
$ gpg --edit-key <user_id> gnupg> passwd Enter passphrase: ***** new passphrase: reenter passphrase: Are you sure you want to remove your passphrase? Y gnupg> save
-
导出密钥
$ gpg --export-secret-keys --armor --no-comment --output bad.asc
-
重新为密钥加上口令
$ gpg --edit <user_id> gnupg> passwd You have no passphrase! new passphrase: ***** reenter passphrase: ***** gnupg> save
-
密钥导入到PGP
import bad.asc into PGP.
$ pgp -ka bad.asc
-
删除临时文件
$ pgp -w bad.asc
![[注意]](/docbook/includes/images/docbook/note.png)
'-w' means safely wipe file. It is better than using rm.
-
为导入到PGP的KEY设置为绝对信任(implicit trust/ an ultimately-trusted introducer)。
$ pgp -ke <userid>
-
为PGP的密钥加入口令保护。
$ pgp -ke <userid>
-
环境变量
-
TZ
时区设置:SET TZ=GMT-4
-
PGPPASS
密钥口令: SET PGPPASS=???????
-
-
配置文件:
pgp.cfgArmor = on Armorlines = 0 Cert_depth = 3 ClearSig = on KEYSERVER_URL = ldap://keyserver.pgp.com #ENCRYPTTOSELF = on #TZFIX=0
-
环境变量
-
注册表设置配置文件主目录
可设置注册表键值\\HKEY_CURRENT_USER\Software\GNU\GnuPG\HomeDir 为 C:/Documents and Settings/Administrator/Application Data/GPG, 则配置文件保存其中。
-
环境变量
可设置环境变量 GNUPGHOME= C:/Documents and Settings/Administrator/Application Data/GPG 来改变缺省设置: ~/.gnupg。还可以通过设置注册表来完成。注册表优先。
-
-
为右键菜单增加“GPG 签名”的命令
修改 HKEY_CLASSES_ROOT\*\shell\SigGPG, 增加 command 项, 默认设置为:gpg -sba %1。
-
配置文件:
options# Options for GnuPG # Copyright 1998, 1999, 2000, 2001 Free Software Foundation, Inc. # # This file is free software; as a special exception the author gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # # This file is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY, to the extent permitted by law; without even the # implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # # Unless you you specify which option file to use (with the # commandline option "--options filename"), GnuPG uses the # file ~/.gnupg/options by default. # # An option file can contain all long options which are # available in GnuPG. If the first non white space character of # a line is a '#', this line is ignored. Empty lines are also # ignored. # # See the man page for a list of options. # Uncomment the next line to get rid of the copyright notice #no-greeting # If you have more than 1 secret key in your keyring, you may want # to uncomment the following option and set your preffered keyid #default-key 621CC013 # GnuPG ultimately trusts all keys in the secret keyring. If you do # not have all your secret keys online available you should use this # option to tell GnuPG about ultimately trusted keys. # You have to give the long keyID here which can be obtained by using # the --list-key command along with the option --with-colons; you will # get a line similiar to this one: # pub:u:1024:17:5DE249965B0358A2:1999-03-15:2006-02-04:59:f: # the 5th field is what you want. #trusted-key 12345678ABCDEF01 # If you do not pass a recipient to gpg, it will ask for one. # Using this option you can encrypt to a default key. key validation # will not be done in this case. # The second form uses the default key as default recipient. #default-recipient some-user-id #default-recipient-self # The next option is enabled because this one is needed for interoperation # with PGP 5 users. To enable full OpenPGP compliance you have to remove # this option. force-v3-sigs # Because some mailers change lines starting with "From " to ">From " # it is good to handle such lines in a special way when creating # cleartext signatures; all other PGP versions do it this way too. # To enable full OpenPGP compliance you have to remove this option. escape-from-lines # If you do not use the Latin-1 (ISO-8859-1) charset, you should # tell GnuPG which is the native character set. Please check # the man page for supported character sets. #charset utf-8 # You may define aliases like this: # alias mynames -u 0x12345678 -u 0x456789ab -z 9 # everytime you use --mynames, it will be expanded to the options # in the above defintion. The name of the alias may not be abbreviated. # NOTE: This is not yet implemented # lock the file only once for the lifetime of a process. # if you do not define this, the lock will be obtained and released # every time it is needed - normally this is not needed. lock-once # If you have configured GnuPG without a random gatherer # (./configure --enable-static-rnd=none), you have to # uncomment _one_ of the following lines. These # extensions won't get used if you have a random gatherer # compiled in (which is the default for GNU and xxxBSD systems) #load-extension rndlinux #load-extension rndunix #load-extension rndegd # GnuPG can import a key from a HKP keyerver if one is missing # for certain operations. Is you set this option to a keyserver # you will be asked in such a case whether GnuPG should try to # import the key from that server (server do syncronize with each # other and DNS Round-Robin may give you a random server each time). # Use "host -l pgp.net | grep www" to figure out a keyserver. # # If you do not want to use the default port 11371, you can give the # name of the keyserver like this: # x-hkp://keyserver.example.net:22742 # If you have problems connecting through a buggy proxy, you can use this: # x-broken-hkp://keyserver.example.net:11371 # But first you should make sure that you have read the man page regarding # proxies (--honor-http-proxy) # Most users just set the name of the preferred keyserver. keyserver keyserver.pgp.com # The environment variable http_proxy is only used when the # this option is set. honor-http-proxy # added for PGP win95 support :-\ cipher-algo CAST5 compress-algo 1 # It wasn't working with these two uncommented (Unix version of GnuPG) I don't # know about the windows version. #disable-cipher-algo BLOWFISH #disable-cipher-algo TWOFISH # The rest is not GnuPG option stuff but notes for GPG integration with other # apps. #============================================================================= # The following macros were added to .muttrc to properly deal with clearsigned # messages that procmail couldn't catch. #macro pager S "|gpg --verify -\n" "Pipe text to GPG for verification." #macro pager D "|gpg -d|less\n" "Pipe text to GPG for decryption." # The following was added to .muttrc to support old PGP messages # (Eudora/Outlook are retards when it comes to the de facto standard of # PGP/MIME) #macro compose S "Fgpg --clearsign\ny" "Clear sign an attachment." #macro compose E "Fgpg -a --encrypt\ny" "Encrypt an atachmant." #macro compose I "Fgpg -a --sign --encrypt\ny" "Encrypt and sign an atachmant." # In your .muttrc make sure you don't have these two entires or Mutt won't # handle them internaly: #auto_view application/pgp-signature #auto_view application/pgp
-
管理KEY
-
创建key
pgp -kg <userid> gpg --gen-key <userid>
-
维护key
pgp -ke <userid> gpg --edit-key <userid> gpg --delete-key <userid> gpg --delete-secret-key <userid> gpg -keyserver ldap://keyserver.pgp.com -send-key <userid> gpg --s2k-cipher-algo CAST5 --s2k-digest-algo SHA1 --compress-algo 1 --edit-key <userid> gpg --sign-key < UID > gpg --sign-key < UID >
-
查看key属性
pgp -kv <userid> pgp -kvv <userid> pgp -kvc <userid> gpg --list-keys gpg --list-sigs gpg --fingerprint gpg --list-secret-keys
-
导入导出key
pgp -ka <keyfile> pgp -kx <userid> <keyfile> <keyring> gpg --import [--allow-secret-key-import] <keyfile> gpg --export <userid> gpg --export-secret-keys -a <userid>
-
-
签名和验证
pgp -sba <file> [-u yourid] pgp <file.asc> gpg -sba [--force-v3-sigs] <file> [-u yourid] gpg <file.asc>
-
加密和解密
pgp -ew <file> <userid ...> # 加密并删除原文 pgp -esa <file> <userid ...> # 加密并签名 pgp <file.asc> [-o output_file] gpg -ea <file> -r <userid ...> gpg --compress-algo 1 --cipher-algo cast5 -e <file> -r <userid ...> gpg --armor [-u sender] [--recipient userid ...] [--sign] [--output outputfile] --encrypt <file> gpg [-d] <file.asc> [-o output_file]
可以用 PGPDISK 将加密文件模拟成一个加密磁盘分区来管理,也许还有其它软件, 但 PGPDISK 是最方便的一个。PGPDISK 其实和 PGP 无关,只是生拉硬拽到 PGP 的软件包中。PGP 6.0.2 是免费包含PGPDISK(加密磁盘)的最后一版,之后的 版本的PGPDISK 作为商业软件要收费。
PGPDISK加密磁盘文件示意
PGPDISK加密磁盘文件的口令保护
为加密PGPDISK文件分配盘符