Home Forums SQLServerCentral.com Anything that is NOT about SQL! Encrypting files with PGP RE: Encrypting files with PGP

  • April 9, 2013 at 8:36 am

    #1604852

    The best syntax for multiple files is to zip them first, and then gpg the zipped single file :).

    Note that if you're dealing with U.S. government standards, DSA/ElGamal keys are right out, as ElGamal is not a FIPS 140-2 algorithm.

    To be as current as possible, ideally, generate your key with

    gpg2 --gen-key --cert-digest-algo SHA512

    or

    gpg2 --gen-key --cert-digest-algo SHA256

    and add the following four lines to the end of gpg.conf for every user that uses gpg

    Substitute CAMELLIA for AES if you're in Europe or Japan.

    personal-cipher-preferences AES256 AES192 AES 3DES

    personal-digest-preferences SHA512 SHA384 SHA256 SHA224

    personal-compress-preferences BZIP2 ZLIB ZIP Uncompressed

    default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES 3DES BZIP2 ZLIB ZIP Uncompressed

    To update existing public keys with at least a preferred cipher ordering,

    gpg2 --edit-key "YourKeyName <YourKey@X.Y>"

    showpref

    setpref SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES 3DES BZIP2 ZLIB ZIP Uncompressed

    quit

    y