If you are running Linux or Windows, the instructions below can be used with some modifications. We will release platform specific guides for them in the future. If that isn’t the case, Homebrew is a package manager (similar to RPM or deb on Linux) that makes This guide assumes you use Homebrew to install packages on your Mac. Please visit and follow the instructions to install it. To generate your keys, you need to install GnuPG (aka GPG). GPG is a free software alternative to the closed source commercial PGP. ![]() To install GPG with Homebrew, it’s as simple as: HOW TO UNINSTALL GPG SUITE FROM MAC SOFTWARE HOW TO UNINSTALL GPG SUITE FROM MAC INSTALL We will be removing the Sign and Encrypt capabilities from the master key forcing usage of subkeys for those operations. This limits the damage that can be done if the master key is ever compromised. Now you are prompted for how long the RSA key should be.Confirm that the current allowed actions only lists Certify, then type q and hit enter to finish setting capabilities.Next type e and hit enter to toggle off the Encrypt capability.When prompted for capabilities, type s and hit enter to toggle off the Sign capability.Next you want to toggle off the sign and encrypt capabilities from the key.When prompted for what kind of key, pick option: (8) RSA (set your own capabilities).To generate the master key, follow these steps: Now GPG needs to know who this key is for.For expiration, we suggest picking 0 so the key doesn’t expire.Type 4096 to set the highest security that GPG currently supports. You will now be prompted for your master key passphrase.If everything looks good at this point, hit o for Okay.If you’d like to enter a comment for the key, you can do so next.We will reference this email as for the remainder of this guide.Next provide the email address you want to use for receiving encrypted email.For the Real Name, we suggest picking the same “friendly name” you use for outgoing email from Cerb. Please ensure this is a secure password that you have not used anywhere else. HOW TO UNINSTALL GPG SUITE FROM MAC PASSWORD If you are unsure about any of the above, the screenshot below shows the entire key creation process. This step is critical to the safety of your GPG keys. If you don't do this, your keys could be forever lost or worse. Gpg -export -armor > we will create a revocation certificate for the key in case it is ever compromised: Gpg -export-secret-keys -armor > will also export the public key to keep with the private key: To export your private key, run the following replacing in both places with your email address used when creating the key. Gpg -output -gen-revoke the prompts to create the revocation certificate. For reason, we suggest 1 = Key has been compromised and you can hit enter on the description line (it’s not needed). Now that we have these three files created, back them up on a USB drive and put in a very safe place (safety deposit box is a common suggestion).Īfter copying them to a USB drive, we highly recommend deleting the file ending in. You do not need to delete the file ending in. Now that you have Cerb setup to receive encrypted email, you need to tell the world about your public key so they can encrypt emails to you. There are a number of different public key servers commonly used, so we recommend submitting to them all for coverage. ![]() You’ll need your public key to do this, so if you don’t still have it from the Export keys for safe storage step earlier, you can re-export it now with: HOW TO UNINSTALL GPG SUITE FROM MAC PASSWORD.HOW TO UNINSTALL GPG SUITE FROM MAC SOFTWARE. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |