Translations:KMail/gpg/4/en: Difference between revisions

The web of trust is extended in key signing parties that go like this:
* you ([email protected]) meet John Foo ([email protected]) who is already a member of the web of trust
* you install '''gpg'''
* you have a private/public key pair or generate one with {{Input|1=gpg --gen-key}}
Your private key is stored in "secring.gpg", your public one is stored in "pubring.gpg". You keep your private key secure, and are free to distribute your public key.
* you find out your key's fingerprint (name)
{{Input|1=gpg --list-keys
 /home/me/.gnupg/pubring.gpg
 ----------------------------------
 pub  1024D/'''''45E377BB''''' 2008-02-03
 [...]}}
* you upload your public key to your key server {{Input|1=gpg --send-key}}
* John downloads your key from the key server {{Input|1=gpg --search-key me@home}}
* John checks your passport and signs your key {{Input|1=gpg --sign-key ''45E377BB''}}
* John uploads your key again {{Input|1=gpg --send-key ''45E377BB''}}
* You are now part of the web of trust and your public key is on the key server.