cadastrar chave gpg 2009/05/10Posted by gsavix in Memorando.
Tags: autenticação digital, chave de segurança, impressão digital
The easiest way to add a PPA’s key to your system is to follow our screen cast: Ogg Theora version, YouTube version.
Here’s what the screencast tells you:
Step 1: Visit the PPA’s overview page in Launchpad. Let’s go back to the AWN Testing team’s PPA that we were looking at earlier.
Step 2: Click the key fingerprint on the overview page. It’ll look something like this: B0BE17C2A0C914F086B7B8327D2C7A23BF810CD5`.
Extract a key
You can extract a key by typing in some words that appear in the userid of the key you’re looking for, or by typing in the keyid in hex format (“0x…”)
Show PGP “fingerprints” for keys
Show SKS full-key hashes
Search for keys:
get regular index of matching keys
get verbose index of matching keys
retrieve ascii-armored keys
retrieve keys by full-key hash
SKS is a new OpenPGP keyserver whose goal is to provide easy to deploy, decentralized, and highly reliable synchronization. That means that a key submitted to one SKS server will quickly be distributed to all key servers, and even wildly out-of-date servers, or servers that experience spotty connectivity, can fully synchronize with rest of the system. You can see SKS in action here:
And there are many more. Go here to see a graph of the complete SKS network, as well as some other interesting statistics.
The foundation of SKS is a fast new algorithm for reconciling remote data sets. That algorithm is described in the following papers:
Set Reconciliation with Nearly Optimal Communication Complexity
Practical Set Reconciliation
You can download SKS from the Savannah site. Get involved! There’s a mailing list for the SKS keyserver that you can subscribe to here. There’s also a new Documentation Wiki where you can find more help on installing and using SKS.
Step 3: This will take you to the key’s page in the Ubuntu keyserver. Click the ID, which looks something like this: BF810CD5
Step 4: Copy the public key, which will be something like: — i.e. the portion starting:
—–BEGIN PGP PUBLIC KEY BLOCK—–
Version: SKS 1.0.10
—–END PGP PUBLIC KEY BLOCK—–
Step 5: Paste the public key into a text editor and save it.
Step 6: Open System->Administration->Software Sources and click the Authentication tab.
Step 7: Click Import Key File, select the key you saved earlier and you’re done!
Adding the keys in the terminal
If you’re used to adding keys to your personal keyring, you’ll still want to read this section as we’re going to add the PPA’s key to apt’s keyring.
First up, visit the PPA’s overview page. Let’s go back to the AWN Testing team’s PPA that we were looking at earlier.
Here you can see the fingerprint of the PPA’s key. It’ll look something like this: B0BE17C2A0C914F086B7B8327D2C7A23BF810CD5. Copy it and then open a terminal.
To add the AWN key, you’d enter this:
sudo apt-key adv –recv-keys –keyserver keyserver.ubuntu.com B0BE17C2A0C914F086B7B8327D2C7A23BF810CD5
Replace B0BE17C2A0C914F086B7B8327D2C7A23BF810CD5 with the fingerprint of the PPA key you’re dealing with.