Your question is really “How do I encrypt to a key without gpg balking at the fact that the key is untrusted?” One answer is you could sign the key. gpg –edit-key YOUR_RECIPIENT sign yes save The other is you could tell gpg to go ahead and trust. gpg –encrypt –recipient YOUR_RECIPIENT –trust-model always YOUR_FILE
Incoming signatures always point to a UID. UIDs cannot be modified, only revoked. If you want to change one, it will have to get signed again. If you revoke a UID, you will lose all incoming signatures. UIDs are simple strings usually adhering to the pattern Name (comment) <mail@example.org>, and the signature is created over … Read more
See https://emacs.stackexchange.com/questions/233/ for the same question. The signature check failed because you don’t have the new key (the old signature key expired on Sep 23). The new key is available from the usual GPG key-servers, comes with Emacsā„26.3, and can also be obtained by installing the package gnu-elpa-keyring-update.
Since git 2.19.1, gpg2 is supported! gpg-agent can handle automatic signing now, remembering your passphrase This should make it easier to use gpg to sign commits automatically. To be exact, git version 2.19.1 has at least gpg 2.2.9. These instructions were tested on Windows 7, Windows 8.1, Windows 10, Arch Linux and Fedora 29. Steps … Read more
I have added GPG_TTY=$(tty) export GPG_TTY to my ~/.bash_profile file. Now it is working. See also https://github.com/Homebrew/homebrew-core/issues/14737#issuecomment-309848851
I just ran into this issue, on the gpg CLI in Arch Linux. I needed to kill the existing “gpg-agent” process, then everything was back to normal ( a new gpg-agent should auto-launch when you invoke the gpg command, again; …). edit: if the process fails to reload (e.g. within a minute), execute gpg-agent in … Read more
Exported secret keys are encrypted by default, however –export-options export-reset-subkey-passwd will produce an unprotected export: When using the –export-secret-subkeys command, this option resets the passphrases for all exported subkeys to empty. This is useful when the exported subkey is to be used on an unattended machine where a passphrase doesn’t necessarily make sense. Defaults to … Read more
Yes, you will need to transfer the keys. Mac and Linux work the same, storing the keys in ~/.gnupg. The safest way to transfer the files is using scp (part of ssh): scp -rp ~/.gnupg othermachine: However, you will need to have ssh working first. Transferring them with, say, a USB flash drive isn’t such … Read more
The various OpenPGP keyserver synchronize, but that takes some time. If you know which keyserver will be queried, you can directly upload your key there. I did: gpg –keyserver hkp://pool.sks-keyservers.net –recv-keys EE539F98 gpg –keyserver hkp://keyserver.ubuntu.com –send-keys EE539F98 and now your key can successfully be found on Ubuntu’s keyserver, without having to wait until it automatically … Read more