Silk Road forums

Discussion => Security => Topic started by: Dankasaurus on September 26, 2013, 03:12 am

Title: GPG4USB
Post by: Dankasaurus on September 26, 2013, 03:12 am
Maybe the person who sent me a test encrypted message (because we were going to go back and forth to see how well we understood the whole pgp thing) didn't do something right, or maybe I didn't, who knows.
When I paste his encrypted message into the black editor and press Decrypt, I get this message in a pop-up (obviously without his id censored out):

http://s22.postimg.org/bnistvq3l/Capture.png


It also doesn't prompt me for my password, which I know is needed for decryption.


What am I doing wrong?
Title: Re: GPG4USB
Post by: Yoda on September 26, 2013, 08:34 am
Think of it like making phone calls.... for him to call  you, he needs to dial your number.  For you to call him, you must dial his number.

For you to send a message to someone, their key must be used.... for someone to write to you, your key must be used.

Have him rewrite the msg and encrypt in your key.  Then try to decrypt it.
Title: Re: GPG4USB
Post by: mrmdma on September 26, 2013, 11:00 am
Maybe the person who sent me a test encrypted message (because we were going to go back and forth to see how well we understood the whole pgp thing) didn't do something right, or maybe I didn't, who knows.
When I paste his encrypted message into the black editor and press Decrypt, I get this message in a pop-up (obviously without his id censored out):

http://s22.postimg.org/bnistvq3l/Capture.png


It also doesn't prompt me for my password, which I know is needed for decryption.


What am I doing wrong?

Have you created a keypair using something like kleopatra?
If you did use Kleopatra to create an keypair (Public and Private), you should have them stored somewhere - Preferably in an encrypted volume using something like truecrypt (more info google&youtube).

How the encryption works is simple. You will IMPORT your keypair into the encryption software (GPG4USB).
Your friend will also have to send you his PUBLIC key. IMPORT his PUBLIC key as well.

Now, to send an encrypted message to your buddy you type or copy the desired message into the txt-field of the software, be sure to include your PUBLIC key as well if the friend does not have it yet.
When the message is ready inside the text-field you will tick the corresponding "user" from the right side of the software UI (you can include yourself also :))

Now the message "should be" encrypted correctly and can only be decrypted by your buddy using his PRIVATE key, or if you included yourself too, by your PRIVATE key also.

Note: the encryption sometimes messes up if you use letters like öäåéè... and so on. Therefore it is highly suggested when dealing with vendors that you do not use them.

NEVER share you PRIVATE key with anyone. Not even your mom.
Title: Re: GPG4USB
Post by: Dankasaurus on September 26, 2013, 02:10 pm
Thanks guys! I figured it out last night. I just wiped out all the info I had already created and saved in GPG and started fresh with a new pub and private key and had someone send me a message and it ended up working fine. I don't know what the problem ended up being, but I'm guessing it was on the other guy's end the first time since GPG didn't prompt me for my password when I tried to decrypt his message, it just went straight to that error.

:D