<dl>
<dt>Use a third-party package manager to install GnuPG</dt>
-<dd>Your macOS comes with a program called "Terminal" pre-installed, which we'll use to set up your encryption with GnuPG, using the command line. However, the default macOS package manager makes it difficult to install GnuPG and other pieces of free software (like Emacs, GIMP, or Inkscape).</p>
-To make things easier, we recommend setting up the third-party package manager "Homebrew" to install GnuPG. Copy the link on the home page of <a href="https://brew.sh/">Homebrew</a> and paste it in Terminal. Click "Enter" and wait for it to finalize.</p>
-When it is done, install the program by entering the following code in Terminal:</p>
+<dd>Your macOS comes with a program called "Terminal" pre-installed, which we'll use to set up your encryption with GnuPG, using the command line. However, the default macOS package manager makes it difficult to install GnuPG and other pieces of free software (like Emacs, GIMP, or Inkscape).<br>
+To make things easier, we recommend setting up the third-party package manager "Homebrew" to install GnuPG. Copy the link on the home page of <a href="https://brew.sh/">Homebrew</a> and paste it in Terminal. Click "Enter" and wait for it to finalize.<br>
+When it is done, install the program by entering the following code in Terminal:<br>
<span style="color:#2f5faa; font-family: monospace;">brew install gnupg gnupg2</span>. After installation is done, you can follow the steps of the rest of this guide.</dd>
</dl>
<dl>
<dt>Get GnuPG by downloading GPG4Win</dt>
-<dd><a href="https://www.gpg4win.org/">GPG4Win</a> is a email and file encryption software package that includes GnuPG. Download and install the latest version, choosing default options whenever asked. After it's installed, you can close any windows that it creates.</p>
+<dd><a href="https://www.gpg4win.org/">GPG4Win</a> is a email and file encryption software package that includes GnuPG. Download and install the latest version, choosing default options whenever asked. After it's installed, you can close any windows that it creates.<br>
<p class="notes">To follow the rest of the steps in this guide, you'll use the program called "PowerShell", which is a program you'll see elsewhere referred to as a "terminal." This allows you to operate your computer using the command line.</p>
<div class="sidebar">
<p><img
src="../static/img/en/screenshots/step2a-02-make-keypair.png"
-alt="Step 2.A: Make your Keypair" text="Make a keypair" /></p>
+alt="Step 2.A: Make your Keypair" /></p>
<br />
<p><img
src="../static/img/en/screenshots/step2a-03-make-keypair.png"
<p>Use the following command to export your secret key so you can import it into your email client at the next <a href=#section3>step</a>. To avoid getting your key compromised, store this in a safe place, and make sure that if it is transferred, it is done so in a trusted way. Exporting your keys can be done with the following commands:</p>
<span style="color:#2f5faa; font-family: monospace;">
-<p>$ gpg --export-secret-keys -a keyid > my_secret_key.asc</p>
-<p>$ gpg --export -a keyid > my_public_key.asc</p>
-</span>
+$ gpg --export-secret-keys -a keyid > my_secret_key.asc<br>
+$ gpg --export -a keyid > my_public_key.asc<br>
+</span><br />
<br />
<dl>
<dt>My key doesn't seem to be working or I get a "permission denied."</dt>
-<dd>Like every other file or folder, gpg keys are subject to permissions. If these are not set correctly, your system may not be accepting your keys. You can follow the next steps to check, and update to the right permissions.</p>
+<dd>Like every other file or folder, gpg keys are subject to permissions. If these are not set correctly, your system may not be accepting your keys. You can follow the next steps to check, and update to the right permissions.<br><br>
-# Check your permissions: <span style="color:#2f5faa; font-family: monospace;">ls -l ~/.gnupg/*</span></p>
-# Set permissions to read, write, execute for only yourself, no others. This is the recommended permission for your folder. You can use the code <span style="color:#2f5faa">
-chmod 700 ~/.gnupg</span>.</p>
-# Set permissions to read and write for yourself only, no others. This is the recommended permission for the keys inside your folder. You can use the code: <span style="color:#2f5faa; font-family: monospace;">chmod 600 ~/.gnupg/*</span>.</p>
+# Check your permissions: <span style="color:#2f5faa; font-family: monospace;">ls -l ~/.gnupg/*</span><br><br>
+# Set permissions to read, write, execute for only yourself, no others. This is the recommended permission for your folder. <br>
+You can use the code <span style="color:#2f5faa; font-family: monospace;">chmod 700 ~/.gnupg</span><br><br>
+# Set permissions to read and write for yourself only, no others. This is the recommended permission for the keys inside your folder. <br>
+You can use the code: <span style="color:#2f5faa; font-family: monospace;">chmod 600 ~/.gnupg/*</span><br><br>
-<p class="notes"><p>If you have (for any reason) created your own folders inside ~/.gnupg, you must also additionally apply execute permissions to that folder. Folders require execution privileges to be opened. For more information on permissions, you can check out <a href="https://helpdeskgeek.com/linux-tips/understanding-linux-permissions-chmod-usage/">this detailed information guide</a>.</p>
+<p class="notes"><p>If you have (for any reason) created your own folders inside ~/.gnupg, you must also additionally apply execute permissions to that folder. Folders require execution privileges to be opened. For more information on permissions, you can check out <a href="https://helpdeskgeek.com/linux-tips/understanding-linux-permissions-chmod-usage/">this detailed information guide</a>.<br>
</dd>
<dt class="feedback">Don't see a solution to your problem?</dt>
<dd class="feedback">Please let us know on the <a
your key</a> as a file on your computer.</dd>
<dt>Transferring your keys</dt>
-<dd>Use the following commands to transfer your keys. To avoid getting your key compromised, store it in a safe place, and make sure that if it is transferred, it is done so in a trusted way. Importing and exporting a key can be done with the following commands:</p>
+<dd>Use the following commands to transfer your keys. To avoid getting your key compromised, store it in a safe place, and make sure that if it is transferred, it is done so in a trusted way. Importing and exporting a key can be done with the following commands:<br>
<span style="color:#2f5faa; font-family: monospace;">
-$ gpg --export-secret-keys -a keyid > my_private_key.asc</p>
-$ gpg --export -a keyid > my_public_key.asc</p>
+$ gpg --export-secret-keys -a keyid > my_private_key.asc<br>
+$ gpg --export -a keyid > my_public_key.asc<br>
+$ gpg --import my_private_key.asc<br>
+$ gpg --import my_public_key.asc<br>
</span>
+<p>Ensure that the keyID printed is the correct one, and if so, then go ahead and add ultimate trust for it:</p>
<span style="color:#2f5faa; font-family: monospace;">
-$ gpg --import my_private_key.asc</p>
-$ gpg --import my_public_key.asc</p>
-</span>
-
-Ensure that the keyID printed is the correct one, and if so, then go ahead and add ultimate trust for it:</p>
-<span style="color:#2f5faa; font-family: monospace;">
-$ gpg --edit-key [your@email]</p>
-</span>
+$ gpg --edit-key [your@email]
+</span><br>
Because this is your key, you should choose <span style="color:#2f5faa; font-family: monospace;">ultimate</span>. You shouldn't trust anyone else's key ultimately.
<h3><em>Step 3.a</em> Set up your email with encryption</h3>
Once you have set up your email with encryption, you can start contributing to encrypted traffic on the Internet. First we'll get your email client to import your secret key, and we will also learn how to get other people's public keys from servers so you can send and receive encrypted email.
-<p># Open your email client and use "Tools" → <span style="color:#2f5faa;">OpenPGP Manager</p></span></p>
+<p># Open your email client and use "Tools" → <span style="color:#2f5faa;">OpenPGP Manager</span></p>
<p># Under "File" → <span style="color:#2f5faa;">Import Secret Key(s) From File</span></p>
<p># Select the file you saved under the name [my_secret_key.asc] in step <a href="#step-3b">step 3.b</a> when you exported your key</p>
<p># Unlock with your passphrase</p>
</div><!-- End .main -->
</div><!-- End #step-lost_key .step-->
-<!-- ~~~~~~~~~ a div for each step ~~~~~~~~~
+<!-- ~~~~~~~~~ a div for each step ~~~~~~~~~ -->
<div id="webmail-and-GnuPG" class="step">
<div class="main">
</div><!-- End .main -->
</div><!-- End #webmail-and-GnuPG .step-->
-<!-- ~~~~~~~~~ a div for each step ~~~~~~~~~
+<!-- ~~~~~~~~~ a div for each step ~~~~~~~~~ -->
<div id="step-6d" class="step">
<div class="main">
culture to the point that we feel like something is missing when we see an
email address without a public key fingerprint.</p>
-</div>--><!-- End .main
-</div> <!--End #step-6d .step-->
+</div><!-- End .main-->
+</div><!-- End #step-6d .step-->
</div></section><!-- End #section6 -->
<!-- ~~~~~~~~~ Section 7: Next steps ~~~~~~~~~ -->
projects / enc-live.git / commitdiff