How To Setup PGP And Generate
a Public And Private Key Pair
- Logon to your
server using telnet or SSH (preferred).
- Change to your
home directory if you are not already there.
cd ~
- Create the .pgp
directory if it does not already exist.
mkdir .pgp
- Generate a public
and private key pair.
- Type pgpk
-g
(Pgpk may complain about not being able to find a random seed
file or your configuration file. You may safely ignore these messages.)
- Select DSS/Diffie-Hellman
when prompted
- Choose 2048/1024
bits size when prompted
- Type the userid
(name) of your key when prompted (examples: orderkey, sales@mydomain.com,
etc.)
- Type '0'
for the validity period so the keys will never expire
- Type a passphrase
for your keys and WRITE IT DOWN!
- Confirm your
passphrase when prompted
- Press <enter>
when prompted for a server URL
- Logoff telnet
and logon to your server using FTP
- Navigate to your
.pgp directory
( /big/dom/xdomain/username/.pgp )
- Download the
secring.skr file using binary transfer mode
- Delete the secring.skr
and secring.bak files from the server!
- Make a backup
copy of secring.skr onto a floppy
and record the userid name and passphrase on the label.
- Place the key
in the downloaded secring.skr key ring onto your main PGP key ring
using the PGP Keys utility.
The public key is now
located on the server and the secure key is located on your client PC and
also on a backup floppy. The public key on the server will be used to encrypt
your form data and you will use the secure key to decrypt the contents on
your PC. |
