1 |
boklm |
418 |
This directory contains some scripts used to generate and use GPG keys |
2 |
|
|
for Mageia. |
3 |
|
|
|
4 |
|
|
To use them, gpg needs to be installed, and ssss-combine ssss-split |
5 |
|
|
binaries should be in ./bin directory (or path updated in config file). |
6 |
|
|
|
7 |
|
|
- generate-key : generate a new GPG key, copy the public key in ./public |
8 |
|
|
directory. The private key is encrypted and copied in file |
9 |
|
|
./private/mageia-board-seckey.gpg. The password is split in 6 parts |
10 |
|
|
using "Shamir's Secret Sharing Scheme" with this program : |
11 |
|
|
http://point-at-infinity.org/ssss/ |
12 |
|
|
3 parts are required to combine the password and decrypt the key. |
13 |
|
|
|
14 |
|
|
- move-part : script used to move on a USB key one part of the password |
15 |
|
|
and a copy of the encrypted GPG key. The public directory is also copied. |
16 |
|
|
It takes as argument a number (between 1 and 6) and a path. |
17 |
|
|
|
18 |
|
|
- import-priv-key : this script import the private key in directory |
19 |
|
|
./homedir using encrypted key and 3 parts of the password. Copy all |
20 |
|
|
password parts in directory ./private/parts, the encrypted key in |
21 |
|
|
./private/mageia-board-seckey.gpg, run the script and you should be |
22 |
|
|
able to use gpg with "gpg --homedir ./homedir" |
23 |
|
|
|
24 |
|
|
|
25 |
|
|
And the license for all scripts in this directory (except otherwise |
26 |
|
|
indicated, or for external programs) : |
27 |
|
|
* This program is free software. It comes without any warranty, to |
28 |
|
|
* the extent permitted by applicable law. You can redistribute it |
29 |
|
|
* and/or modify it under the terms of the Do What The Fuck You Want |
30 |
|
|
* To Public License, Version 2, as published by Sam Hocevar. See |
31 |
|
|
* http://sam.zoy.org/wtfpl/COPYING for more details. |