I think I did not state it clear enough on the SSH part. I know how to use my SSH public/private keys for remote SSH logins and I've already done it a long time ago, but my question on that is can I use the same "seed" (aka: the same key pair) for *both* GnuPG and SSH, because looks like they both use the same mechanism for generating the keys and the cryptographic algorithm is also DSA or SHA-1 for both GnuPG and SSH. Just a matter of convenience so I don't have to back up both of GnuPG and SSH key pairs and can recover one pair from the other.
On Tue, 10 Feb 2009 08:17:20 -0600, "Donald J Bindner" <[email protected]> said: > 1. To export your key as an ASCII file that you can share: > > $ gpg --armor --export keyid > > Instead of keyid, you can use your email address, or other text > that identifies your key. You can actually export your whole > public keyring this way. Then share it or put it on a web page, > like http://limestone.truman.edu/~dbindner/public.txt > > 2. Your public and private keyrings are usually stored by default > in ~/.gnupg > > 3. You can generate public and private keys for SSH, but you have > to use an SSH tool for that. > > $ ssh-keygen > > Keep the private part in ~/.ssh/id_rsa and add the contents of > id_rsa.pub to the end of ~/.ssh/authorized_keys on the system > you'd like to login to (make a new file if it doesn't exist). > > $ cat id_rsa.pub >> ~/.ssh/authorized_keys > $ chmod 600 ~/.ssh/authorized_keys > > Don > > On Tue, Feb 10, 2009 at 03:20:23AM -0600, Huan Truong wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA1 > > > > Hi Don et al, > > > > It looks like I have created a digital signature for myself and it > > works! So a couple of questions: > > > > - - Can I also use my GPG keys to make a public/private key chain for my > > ssh logins - I currently use them as separate keys but I guess they > > both use SHA-1 to generate the public/private key pair, there should > > be some way to combine them. > > > > - - Where is my public/private key file located in? I want to back it up. > > > > - - How do I get my key signed by someone? > > > > Thanks, > > (I guess I don't need to put my sig here anymore, pretty cool :-) > > -----BEGIN PGP SIGNATURE----- > > Version: GnuPG v2.0.10 (Darwin) > > > > iEYEARECAAYFAkmRRt8ACgkQELk86Tv8blSmAQCeNrZdt1E66daZIyJ8ZiWiBl5S > > Gu0AniunrR3kXNa7zCLGBhUuBkkKRTS1 > > =ROPo > > -----END PGP SIGNATURE----- > > > > ----------------------------------------------------------------- > > To get off this list, send email to [email protected] > > with Subject: unsubscribe > > ----------------------------------------------------------------- > > > > -- > Don Bindner <[email protected]> > > ----------------------------------------------------------------- > To get off this list, send email to [email protected] > with Subject: unsubscribe > ----------------------------------------------------------------- > ----------------------------------------------------------------- To get off this list, send email to [email protected] with Subject: unsubscribe -----------------------------------------------------------------
