This site is now 100% read-only, and retired.

Submitting your GPG key to a keyserver

Posted by JoshTriplett on Wed 25 Oct 2006 at 10:14

Generally, when using GPG, you want others to have the ability to verify your signatures or encrypt data to you. In order to do so, they need your public key. To help them obtain it conveniently, you can put it on a public keyserver.

If you have a private automated system using a GPG key, you might not care if anyone else can encrypt or verify signatures. Similarly, if you just want to exchange encrypted email with a few people, you could just exchange keys privately with those people. However, if you want the general public to have the ability to verify your signatures or encrypt data to you, you should put your key on a public keyserver so others can obtain it.

GPG generally comes configured to look at a reasonable default keyserver. You can set the keyserver to use in the configuration file ~/.gnupg/gpg.conf with the keyserver directive, or via the command-line option --keyserver; both take an URL as an argument, such as hkp://subkeys.pgp.net. However, all of the major keyservers communicate with each other and synchronize keys, so you usually don't need to change the default.

To send your key to a keyserver, you need to know your key ID. You can print the information on all keys you have the private key for by running gpg --list-secret-keys. This will generate output similar to the following:

/home/josh/.gnupg/secring.gpg
-----------------------------
sec   1024D/D0FE7AFB 2004-06-24
uid                  Josh Triplett 
uid                  Josh Triplett 
ssb   2048g/E75EAB2B 2004-06-24
From this, you can see my primary key ID, D0FE7AFB.

Now that you know your key ID, you can send your public key to the default keyserver with the --send-keys option:

$ gpg --send-keys D0FE7AFB
gpg: sending key D0FE7AFB to hkp server subkeys.pgp.net

Keyservers distribute public keys to anyone who requests them. Once you hav sent your key to a keyserver, others can request your key using the --recv-keys option: gpg --recv-keys D0FE7AFB . To refresh all your keys from a keyserver, to obtain new signatures, new UIDs, or key revocations, use gpg --refresh-keys; you should do this regularly.

 

 


Re: Submitting your GPG key to a keyserver
Posted by obergix (82.238.xx.xx) on Thu 26 Oct 2006 at 08:55
FYI, gpgsig is a beautiful script which helps notifying others that you signed their keys, and upload them to servers...

See : http://aplit.org/damien/gpgsig/

Hope this helps.

[ Parent ]

Re: Submitting your GPG key to a keyserver
Posted by Anonymous (109.131.xx.xx) on Sun 10 Mar 2013 at 10:32
Do you maybe have this script? because the link is deadth

[ Parent ]

Re: Submitting your GPG key to a keyserver
Posted by obergix (82.238.xx.xx) on Sun 10 Mar 2013 at 11:23

[ Parent ]