Silk Road forums

Discussion => Security => Topic started by: vincentvega45 on July 15, 2013, 03:12 am

Title: PGP question
Post by: vincentvega45 on July 15, 2013, 03:12 am
So I have a public key and some one send me a pgp message how can I import that to open it?
Thanks
Title: Re: PGP question
Post by: vincentvega45 on July 15, 2013, 03:24 am
anyone ?
Title: Re: PGP question
Post by: tbart on July 15, 2013, 03:28 am
assuming you're working with gpg4usb encryption software - if not, here's the link http://gpg4usb.cpunk.de/download.html

below is the msg another member (rustykoin) gave me that really turned the lights on - one part i'll explain in advance that seems to put it all in perspective. When you give your public key out, it has a corresponding private key in your copy of gpg4usb, and only in your copy, as your copy generated it randomly. The sender used it to encrypt a msg, that when you've used your private key to decrypt it, you'll respond to him using his public key, as his public key has it's own corresponding private key in his copy of gpg4usb

i don't know who's public key you have, i'm assuming you have your own, if not, you're not going to decrypt that msg

anyway, here be rustykoin's "paint by the numbers" instructions on encrypting and exchanging comm - his instructions start out telling me how to encrypt a msg to him (using his public key)

open your gpg4usb and just paste my (rustykoin's) whole public key in there, like I said in the window that looks like a text editor. Even where it says BEGIN PGP PUBLIC and down to where it says END PGP PUBLIC, the whole thing. Now if you look at the menu bar at the top where it says Keys, click that and go to Import Keys and finally click Clipboard. If you've done it right then it should pop up with my name and even my tormail address and then add it to your chain.

Okay, so now  that you've got that done what you want to do it clear all that crap out of the Clipboard and type a short message, could be anything. After you're done with your message make sure to click the check box next to my name (on the right side key chain list) and finally click the Encrypt button. This produces a mass of gibberish that I can only decode with my private key.

Okay, now what you want to do is copy that gibberish and send it to me in the next message you send me. I'll let you know if you've done it right. Meanwhile, send me your public key and I will send you an encrypted message that you can decrypt.

If you're unsure on how to create keys, I'll break it down quickly. As soon as you open the program a wizard should pop up instructing you to create a key pair, if it does not then click on the Help menu button and select Open Wizard. Click the first next to keep everything in English and then select Create New Key Pair, the first option in blue. Click on the Create New Key button and it will pop up with a variety of info to fill out.

I suggest you use a tormail.org email account for your keys to keep them further secure. Also make sure to create a strong password as you will be prompted each time you try to Decrypt a message someone sends you, and this adds an extra layer of security. Finally make sure to click the Never Expires check box next to the date.

As soon as you fill out your info and password the program will create your public and private keys, this will only take a second. In order to preview your public key after it's created click on Manage Keys and select the check box next to your newly created key, then choose Export to File. Name it anything you want, but my suggestion is tbart Public.txt or something, but as long as it is a text file. Now you can go find your file, open it up and there is your public key which you can give to people in order to send you messages. Never give out your private key to anyone, it is only for you.

The way PGP works is that your public key encrypts messages that only your private key can decrypt. That is why it is so secure, because even if the message was intercepted then no one would be able to crack it because they don't have your private key.

Anyway bro, I hope this helps. Again, feel free to send me an encrypted message using my public key. Also send me your public key so I can send you a message as well. It's intimidating at first, and a lot of information to absorb at once. But trust me, give it a few good trys and you'll be a professional in no time. 

This will help make more sense – when I msg someone I will need their public key to encrypt the msg, as they have the private key to decrypt. When they msg me they will need my public key to encrypt what they’re sending me, as I have the private key to decrypt

______________________________________________________________

if you want to practice with a msg, here's my public key

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.12 (MingW32)
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=v1cR
-----END PGP PUBLIC KEY BLOCK-----

Title: Re: PGP question
Post by: vincentvega45 on July 15, 2013, 03:34 am
Still not sure how to use this. but here is my public key
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2.0.20 (MingW32)
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=UiO7
-----END PGP PUBLIC KEY BLOCK-----
Title: Re: PGP question
Post by: vincentvega45 on July 15, 2013, 03:46 am
ok sent a couple to you. So do I have to get the person that sent a PGP MESSAGE to put my public code on there key manager before I can read there message?
Thanks
Title: Re: PGP question
Post by: vincentvega45 on July 15, 2013, 03:50 am
or do I need his public code?
Title: Re: PGP question
Post by: tbart on July 15, 2013, 04:06 am
ok sent a couple to you. So do I have to get the person that sent a PGP MESSAGE to put my public code on there key manager before I can read there message?
Thanks

don't know where you sent them, there's nothing in my PM box
2nd - it looks like you're using something other than gpg4usb
mine is "Version: GnuPG v1.4.12 (MingW32)", so suspect you're using gpg4win, which i don't have

download gpg4usb, install it and go back and read the "paint by the numbers" i posted above slowly and encrypt a msg using my public key

gpg4usb is much more "user friendly" and intuitive than gpg4win

Title: Re: PGP question
Post by: vincentvega45 on July 15, 2013, 04:21 am
ok I am starting all over again.
Title: Re: PGP question
Post by: vincentvega45 on July 15, 2013, 04:43 am
ok new key
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.12 (MingW32)

mQENBFHjeMQBCACybq3ZhE3NxqzaDQiqImqkQCQSqmE8d74js6MtyhBT9ktlG27g
onB79IZVzwCP7YAPHkUp+SDVF3JP/JZrMqIjCKKgHs+uJAqQMI6ORU1X0/TnqCrS
z/NBEoKXcXl75aS654Q1jQpHL8sDGgvaekXB5NSCTB9aXELRY3BV1DCGgOfDzx+4
OXykcj6y0ht7hOKYhwwCAhUvPP6Z6MwVNlAyPr5QPsvDp5jA1lnaTtg6n39QDVds
BmNqBrQg7AVdiVvDz8ssBUGBGWUCNc4WtZchXOD40sLfUoJCPFXb4t1rrpfF/c9e
luZ2iciXNQeNGlntKTxXk1Suo0x0Y9vvYI9dABEBAAG0HXZpbmNlbnR2ZWdhNDUg
PHZpbmNlbnR2ZWdhNDU+iQE+BBMBAgAoBQJR43jEAhsDBQkJZ038BgsJCAcDAgYV
CAIJCgsEFgIDAQIeAQIXgAAKCRCrNm0QXjXp2/UaB/4nkLtCM47iKeDMHAq2lu0T
wMYTCEdJghI7Al+p5R/DmMpf9MZeJS5XvKldTGo2yfF69PZu6RMXKT7O/3Usl0M1
pfoKxfHOZ+IYNXVikBdKy7413BmtwXKyiREGCXb08uPnJAyO6ol1oIGKnKA7Ngq+
XVr1O+q6LHfP/XxGDzNpEKHxTnDCCLXaDEreqQjxBBRAEOReRz6pSHa6VIBUlwXl
4hM2sC1fQtJsnTq+TBLIqp3zz/VrKFEyVjt7mBCDr1wp+OB7i3AA56QLscLKemmm
0BXVs1LgfVaVITE0zpffH5Jccgr3brjXjRA1R8wnFAIY8SP6nYtMs6MvE/4pGoTP
uQENBFHjeMQBCAC7PnEhf7awo4ye5akZ7yC2m8jEPf3bluVvgsJgspN41YmJsM1j
4z/0NpYlcSkw1Y2OeMB7KkOgkmyKkmBr/S26QQucIZf8Rc+Od/ADA1CfNR2NPCOD
FExXlpzHJhh+bkHK+y1oCKA2glN03OR4rhMgfpdSOT44xb4byWvuj3QM7ahwf4Ml
9LfCh0JzwKGha8qU4kye6ORxirzJqRu6GKBQ1f5ox2IIciOdG2kGaW5U/r7v5CLS
lII5rW6qDBpvsEdGo4w8AzQ9GlkN6pM2R+twNXPzPG+X4jd8O2mMqukxxsCxnkGD
DLmBFKAmSFYBtOn0GDZ23h5ZBC43o1Gg1tFXABEBAAGJASUEGAECAA8FAlHjeMQC
GwwFCQlnTfwACgkQqzZtEF416duOZgf9EwoKahDG/E25SuFBeuz5eg3wuPbzybgy
57+XAQLIciWwH8QUCcofwg+Pdme4beKXsDbpRe6XKGcyrBLirGkM/ZxqJiwYO/5F
kqIl+cD2xXtIf4PBA6L9lPxRRUEff/+ASh3UhNgXGKWA2bpD2eskn6HUpjgCiXZA
5VaXJ4lzcA6IF6ihc3+WJbLJVgkORYq57MsV0C93PsQekv+h0hxSUGHDwNWDv83e
SMcmk71w4paCoDz6bqaadWWWPPq//f0CK/ltTjFWHo+nhzScEq3l6FC9bkYEZNYg
XjC5AJAdktX2FD73rqgmgsGozPyUlNMko+nbh2FAP8YahPfiFW7+Hw==
=7n8g
-----END PGP PUBLIC KEY BLOCK---
Title: Re: PGP question
Post by: tbart on July 15, 2013, 05:28 am
below is a msg i encrypted using your public key -

if you decrypt it sucessfuly, encrypt a test msg to me using my public key that i posted above

btw, i'll be offline for the next 12 hours or so

-----BEGIN PGP MESSAGE-----
Version: GnuPG v1.4.12 (MingW32)

hQEMA1/qAxHnlmuyAQf/XsqNXvMJhJY9OHHJLvR3PlJVuKrhYVg5HWb/wV5sEH8X
1qA/J+x3nqpb0G31ScwLDP7m7WatNOnrRGNxE5QsI8RNJOxypIrus+DXIxlYhMT9
lOyoFv1D2WWLQ7hVzX5Wc4t/HgYTpIOMIZCAkf4iSi/3gTMw8RxZlVHhRau3FIWO
2d4zioTtOgHsvEkAOxrLJcnO/IKqAvZD2TI6bbFaJrFgqQmebnelCf/dzDTdZ/wi
XBbr3+7mkqQ890aGWgPT/UnTup6gdJwETpIqihuj1uH/4FKEn7QwHB0EcQSl13Fi
t5/M1kXclstpe6C1AXz+vp60bltmPDqZ05/IvhbYtdKWAcZLAj7pm0mTAP5RJ/il
z0cCj+5IgLc+oLoEMEAk+uJ5CTf5QahS5G0ZzUkwn5vnqjtnT6Phv2qJge6hLcDL
Kf7z1wLOgalcFCbH0Xz3mDKm/71+wHbKq3NiND4FI539UeCylxOXnljPBcfJLGUs
RNh+K6EFKXOug4B4+1ucJVZy4ejpiOXhfhTtMBF/T4BXJjMsjVVb
=ChwE
-----END PGP MESSAGE-----