1
0
wiki/Technology/ComputerSecurity/信息安全/OpenPGP/GnuPG-简明指南.html

425 lines
490 KiB
HTML
Raw Normal View History

2024-09-03 21:23:28 +08:00
<!DOCTYPE html>
<html><head><title>GnuPG 简明指南</title><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1.0"/><meta property="og:title" content="GnuPG 简明指南"/><meta property="og:description" content="GnuPG 简明指南."/><meta property="og:image" content="https://wiki.7wate.com/static/og-image.png"/><meta property="og:width" content="1200"/><meta property="og:height" content="675"/><link rel="icon" href="../../../../static/icon.png"/><meta name="description" content="GnuPG 简明指南."/><meta name="generator" content="Quartz"/><link rel="preconnect" href="https://fonts.googleapis.com"/><link rel="preconnect" href="https://fonts.gstatic.com"/><script async src="https://umami.7wate.com/script.js" data-website-id="c061efdc-95dd-4d21-9d04-a1ffda0a85b9"></script><script>
var _hmt = _hmt || [];
(function() {
var hm = document.createElement("script");
hm.src = "https://hm.baidu.com/hm.js?94d8ccb156eb7c65abf317e6e01cdba9";
var s = document.getElementsByTagName("script")[0];
s.parentNode.insertBefore(hm, s);
})();
</script><script async src="https://www.googletagmanager.com/gtag/js?id=G-MHMEL0F832"></script><script>
(function() {
window.dataLayer = window.dataLayer || [];
function gtag() {
window.dataLayer.push(arguments);
}
gtag('js', new Date());
gtag('config', 'G-MHMEL0F832');
})();
</script><link href="../../../../index.css" rel="stylesheet" type="text/css" spa-preserve/><link href="https://cdn.jsdelivr.net/npm/katex@0.16.0/dist/katex.min.css" rel="stylesheet" type="text/css" spa-preserve/><link href="https://fonts.googleapis.com/css2?family=IBM Plex Mono&amp;family=Schibsted Grotesk:wght@400;700&amp;family=Source Sans Pro:ital,wght@0,400;0,600;1,400;1,600&amp;display=swap" rel="stylesheet" type="text/css" spa-preserve/><script src="../../../../prescript.js" type="application/javascript" spa-preserve></script><script type="application/javascript" spa-preserve>const fetchData = fetch(`../../../../static/contentIndex.json`).then(data => data.json())</script></head><body data-slug="Technology/ComputerSecurity/信息安全/OpenPGP/GnuPG-简明指南"><div id="quartz-root" class="page"><div id="quartz-body"><div class="left sidebar"><h1 class="page-title "><a href="../../../..">📚 X·Eden</a></h1><div class="spacer mobile-only"></div><div class="search "><div id="search-icon"><p>Search</p><div></div><svg tabIndex="0" aria-labelledby="title desc" role="img" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 19.9 19.7"><title id="title">Search</title><desc id="desc">Search</desc><g class="search-path" fill="none"><path stroke-linecap="square" d="M18.5 18.3l-5.4-5.4"></path><circle cx="8" cy="8" r="7"></circle></g></svg></div><div id="search-container"><div id="search-space"><input autocomplete="off" id="search-bar" name="search" type="text" aria-label="Search for something" placeholder="Search for something"/><div id="results-container"></div></div></div></div><div class="darkmode "><input class="toggle" id="darkmode-toggle" type="checkbox" tabIndex="-1"/><label id="toggle-label-light" for="darkmode-toggle" tabIndex="-1"><svg xmlns="http://www.w3.org/2000/svg" xmlnsXlink="http://www.w3.org/1999/xlink" version="1.1" id="dayIcon" x="0px" y="0px" viewBox="0 0 35 35" style="enable-background:new 0 0 35 35;" xmlSpace="preserve"><title>Light mode</title><path d="M6,17.5C6,16.672,5.328,16,4.5,16h-3C0.672,16,0,16.672,0,17.5 S0.672,19,1.5,19h3C5.328,19,6,18.328,6,17.5z M7.5,26c-0.414,0-0.789,0.168-1.061,0.439l-2,2C4.168,28.711,4,29.086,4,29.5 C4,30.328,4.671,31,5.5,31c0.414,0,0.789-0.168,1.06-0.44l2-2C8.832,28.289,9,27.914,9,27.5C9,26.672,8.329,26,7.5,26z M17.5,6 C18.329,6,19,5.328,19,4.5v-3C19,0.672,18.329,0,17.5,0S16,0.672,16,1.5v3C16,5.328,16.671,6,17.5,6z M27.5,9 c0.414,0,0.789-0.168,1.06-0.439l2-2C30.832,6.289,31,5.914,31,5.5C31,4.672,30.329,4,29.5,4c-0.414,0-0.789,0.168-1.061,0.44 l-2,2C26.168,6.711,26,7.086,26,7.5C26,8.328,26.671,9,27.5,9z M6.439,8.561C6.711,8.832,7.086,9,7.5,9C8.328,9,9,8.328,9,7.5 c0-0.414-0.168-0.789-0.439-1.061l-2-2C6.289,4.168,5.914,4,5.5,4C4.672,4,4,4.672,4,5.5c0,0.414,0.168,0.789,0.439,1.06 L6.439,8.561z M33.5,16h-3c-0.828,0-1.5,0.672-1.5,1.5s0.672,1.5,1.5,1.5h3c0.828,0,1.5-0.672,1.5-1.5S34.328,16,33.5,16z M28.561,26.439C28.289,26.168,27.914,26,27.5,26c-0.828,0-1.5,0.672-1.5,1.5c0,0.414,0.168,0.789,0.439,1.06l2,2 C28.711,30.832,29.086,31,29.5,31c0.828,0,1.5-0.672,1.5-1.5c0-0.414-0.168-0.789-0.439-1.061L28.561,26.439z M17.5,29 c-0.829,0-1.5,0.672-1.5,1.5v3c0,0.828,0.671,1.5,1.5,1.5s1.5-0.672,1.5-1.5v-3C19,29.672,18.329,29,17.5,29z M17.5,7 C11.71,7,7,11.71,7,17.5S11.71,28,17.5,28S28,23.29,28,17.5S23.29,7,17.5,7z M17.5,25c-4.136,0-7.5-3.364-7.5-7.5 c0-4.136,3.364-7.5,7.5-7.5c4.136,0,7.5,3.364,7.5,7.5C25,21.636,21.636,25,17.5,25z"></path></svg></label><label id="toggle-label-dark" for="darkmode-toggle" tabIndex="-1"><svg xmlns="http://www.w3.org/2000/svg" xmlnsXlink="http://www.w3.org/1999/xlink" version="1.1" id="nightIcon" x="0px" y="0px" viewBox="0 0 100 100" style="enable-background='new 0 0 100 100'" xmlSpace="preserve"><title>Dark mode</title><path d="M96.76,66.458c-0.853-0.852-2.15-1.064-3.23-0.534c-6.063,2.991-12.858,4.571-19.655,4.571 C62.022,70.495,50.88,65.88,42.5,57.5C29.043,44.043,25.658,23.536,34.076,6.47c0.532-1.08,0.318-2.379-0.534-3.23 c-0.851-0.852-2.15-1.064-3.23-0.534c-4.918,2.427-9.375,5.619-13.246,9.491c-9.447,9.447-14.
<p><a href="https://gnupg.org/" class="external">GnuPG</a>GNU Privacy GuardGPG是一款开源软件用于非对称加密。它是满足 GPL 协议的 PGPPretty Good Privacy加密软件实现。GnuPG 依照由 IETF 制定的 OpenPGP 技术标准设计用于加密、数字签章及产生非对称密钥对。GPG 与 PGP 功能兼容。</p>
<p>如果你想发送加密信息,首先你需要得到接收者的公钥,然后通过该公钥对信息进行加密传输,接收者使用私钥就可解密并读取文件。同时,你也可以在公共网络用数字签章表明身份和安全性。</p>
<h2 id="gpg">GPG<a aria-hidden="true" tabindex="-1" href="#gpg" class="internal"> §</a></h2>
<h3 id="安装">安装<a aria-hidden="true" tabindex="-1" href="#安装" class="internal"> §</a></h3>
<p>在 Linux 系统中GnuPG 通常已经被默认安装。在 Windows 和 macOS 系统中,你可以从 <a href="https://gnupg.org/" class="external">GnuPG 官方网站</a> 下载安装。</p>
<h3 id="配置">配置<a aria-hidden="true" tabindex="-1" href="#配置" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-keyword);">~</span><span style="color:var(--shiki-color-text);">/.gnupg - GPG 配置目录</span></span>
<span data-line><span style="color:var(--shiki-token-keyword);">~</span><span style="color:var(--shiki-color-text);">/.gnupg/gpg.conf GPG 配置文件</span></span>
<span data-line><span style="color:var(--shiki-token-keyword);">~</span><span style="color:var(--shiki-color-text);">/.gnupg/trustdb.gpg GPG 信任库,用于存储你信任的其他 GPG 密钥</span></span>
<span data-line><span style="color:var(--shiki-token-keyword);">~</span><span style="color:var(--shiki-color-text);">/.gnupg/pubring.gpg GPG 公钥库,用于存储你的公钥和他人的公钥</span></span>
<span data-line><span style="color:var(--shiki-token-keyword);">~</span><span style="color:var(--shiki-color-text);">/.gnupg/secring.gpg GPG 私钥库,用于存储你的私钥</span></span></code></pre></div>
<h3 id="生成密钥">生成密钥<a aria-hidden="true" tabindex="-1" href="#生成密钥" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 正常模式</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--gen-key</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 专家模式</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--expert</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--full-gen-key</span></span></code></pre></div>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-function);">1.请选择您要使用的密钥种类:</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> (</span><span style="color:var(--shiki-token-function);">1</span><span style="color:var(--shiki-color-text);">) </span><span style="color:var(--shiki-token-function);">RSA</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">and</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">RSA</span><span style="color:var(--shiki-color-text);"> (default)</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> (</span><span style="color:var(--shiki-token-function);">2</span><span style="color:var(--shiki-color-text);">) </span><span style="color:var(--shiki-token-function);">DSA</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">and</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">Elgamal</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> (</span><span style="color:var(--shiki-token-function);">3</span><span style="color:var(--shiki-color-text);">) </span><span style="color:var(--shiki-token-function);">DSA</span><span style="color:var(--shiki-color-text);"> (仅用于签名)</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> (</span><span style="color:var(--shiki-token-function);">4</span><span style="color:var(--shiki-color-text);">) </span><span style="color:var(--shiki-token-function);">RSA</span><span style="color:var(--shiki-color-text);"> (仅用于签名)</span></span>
<span data-line><span style="color:var(--shiki-token-function);">您的选择?</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-constant);">1</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-function);">2.RSA</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">密钥长度应在</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-constant);">1024</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">位与</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-constant);">4096</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">位之间。</span></span>
<span data-line><span style="color:var(--shiki-token-function);">您想要用多大的密钥尺寸?(2048</span><span style="color:var(--shiki-color-text);">)4096</span></span>
<span data-line><span style="color:var(--shiki-token-function);">您所要求的密钥尺寸是</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-constant);">4096</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);"></span></span>
<span data-line><span style="color:var(--shiki-token-function);">请设定这把密钥的有效期限。</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-function);">0</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">=</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">密钥永不过期</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-keyword);">&lt;</span><span style="color:var(--shiki-token-function);">n></span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">=</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">密钥在</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">n</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">天后过期</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-keyword);">&lt;</span><span style="color:var(--shiki-token-function);">n>w</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">=</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">密钥在</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">n</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">周后过期</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-keyword);">&lt;</span><span style="color:var(--shiki-token-function);">n>m</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">=</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">密钥在</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">n</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">月后过期</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-keyword);">&lt;</span><span style="color:var(--shiki-token-function);">n>y</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">=</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">密钥在</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">n</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">年后过期</span></span>
<span data-line><span style="color:var(--shiki-token-function);">密钥的有效期限是?(0</span><span style="color:var(--shiki-color-text);">) 0</span></span>
<span data-line><span style="color:var(--shiki-token-function);">密钥永远不会过期</span></span>
<span data-line><span style="color:var(--shiki-token-function);">以上正确吗?(y/n</span><span style="color:var(--shiki-color-text);">)y</span></span>
<span data-line> </span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-function);">3.</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">You</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">need</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">a</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">user</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">ID</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">to</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">identify</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">your</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">key</span><span style="color:var(--shiki-color-text);">; </span><span style="color:var(--shiki-token-function);">the</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">software</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">constructs</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">the</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">user</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">ID</span></span>
<span data-line><span style="color:var(--shiki-token-function);">from</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">the</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">Real</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">Name,</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">Comment</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">and</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">Email</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">Address</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">in</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">this</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">form:</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-function);">&quot;Heinrich Heine (Der Dichter) &lt;heinrichh@duesseldorf.de>&quot;</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-function);">真实姓名zhouzhongping</span></span>
<span data-line><span style="color:var(--shiki-token-function);">电子邮件地址zhouzhongping@7wate.com</span></span>
<span data-line><span style="color:var(--shiki-token-function);">注释:测试使用</span></span>
<span data-line><span style="color:var(--shiki-token-function);">您正在使用utf-8字符集。</span></span>
<span data-line><span style="color:var(--shiki-token-function);">您选定了这个用户标识:</span></span>
<span data-line><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-function);">“zhouzhongping</span><span style="color:var(--shiki-color-text);"> (测试使用) </span><span style="color:var(--shiki-token-keyword);">&lt;</span><span style="color:var(--shiki-color-text);">zhouzhongping@7wate.com</span><span style="color:var(--shiki-token-keyword);">></span><span style="color:var(--shiki-color-text);"></span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-function);">4.更改姓名(N</span><span style="color:var(--shiki-color-text);">)、注释(</span><span style="color:var(--shiki-token-function);">C</span><span style="color:var(--shiki-color-text);">)、电子邮件地址(</span><span style="color:var(--shiki-token-function);">E</span><span style="color:var(--shiki-color-text);">)或确定(</span><span style="color:var(--shiki-token-function);">O</span><span style="color:var(--shiki-color-text);">)/退出(</span><span style="color:var(--shiki-token-function);">Q</span><span style="color:var(--shiki-color-text);">)o</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-function);">5.您需要一个密码来保护您的私钥。</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-function);">我们需要生成大量的随机字节。这个时候您可以多做些琐事(像是敲打键盘、移动</span></span>
<span data-line><span style="color:var(--shiki-token-function);">鼠标、读写硬盘之类的</span><span style="color:var(--shiki-color-text);">),这会让随机数字发生器有更好的机会获得足够的熵数。</span></span></code></pre></div>
<h2 id="常用命令">常用命令<a aria-hidden="true" tabindex="-1" href="#常用命令" class="internal"> §</a></h2>
<h3 id="查看">查看<a aria-hidden="true" tabindex="-1" href="#查看" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 查看公钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--list-keys</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">-k</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 查看私钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--list-secret-keys</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">-K</span></span></code></pre></div>
<h3 id="编辑">编辑<a aria-hidden="true" tabindex="-1" href="#编辑" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 编辑密钥页面</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--edit-key</span><span style="color:var(--shiki-color-text);"> [密钥ID]</span></span></code></pre></div>
<p><strong>GPG 以下命令需要进入编辑密钥页面。</strong></p>
<table><thead><tr><th>命令</th><th>描述</th><th>示例</th></tr></thead><tbody><tr><td>quit</td><td>退出此菜单</td><td>无需示例,直接输入 <code>quit</code> 即可</td></tr><tr><td>save</td><td>保存并退出</td><td>无需示例,直接输入 <code>save</code> 即可</td></tr><tr><td>help</td><td>显示此帮助</td><td>无需示例,直接输入 <code>help</code> 即可</td></tr><tr><td>fpr</td><td>显示密钥指纹</td><td><code>fpr</code></td></tr><tr><td>list</td><td>列出密钥和用户标识</td><td><code>list</code></td></tr><tr><td>uid</td><td>选择用户标识 N</td><td><code>uid 1</code></td></tr><tr><td>key</td><td>选择子密钥 N</td><td><code>key 1</code></td></tr><tr><td>check</td><td>检查签名</td><td><code>check</code></td></tr><tr><td>sign</td><td>为所选用户标识添加签名</td><td><code>uid 1</code>, 然后 <code>sign</code></td></tr><tr><td>lsign</td><td>为所选用户标识添加本地签名</td><td><code>uid 1</code>, 然后 <code>lsign</code></td></tr><tr><td>tsign</td><td>为所选用户标识添加信任签名</td><td><code>uid 1</code>, 然后 <code>tsign</code></td></tr><tr><td>adduid</td><td>增加一个用户标识</td><td><code>adduid</code>, 然后按提示操作</td></tr><tr><td>deluid</td><td>删除选定的用户标识</td><td><code>uid 1</code>, 然后 <code>deluid</code></td></tr><tr><td>addkey</td><td>增加一个子密钥</td><td><code>addkey</code>, 然后按提示操作</td></tr><tr><td>delkey</td><td>删除选定的子密钥</td><td><code>key 1</code>, 然后 <code>delkey</code></td></tr><tr><td>expire</td><td>变更密钥或所选子密钥的使用期限</td><td><code>key 1</code>, 然后 <code>expire</code>, 接着按提示输入新的到期日</td></tr><tr><td>passwd</td><td>变更密码</td><td><code>passwd</code>, 然后按提示输入新密码</td></tr><tr><td>trust</td><td>变更信任度</td><td><code>trust</code>, 然后按提示选择新的信任级别</td></tr><tr><td>revsig</td><td>吊销所选用户标识上的签名</td><td><code>uid 1</code>, 然后 <code>revsig</code></td></tr><tr><td>revuid</td><td>吊销选定的用户标识</td><td><code>uid 1</code>, 然后 <code>revuid</code></td></tr><tr><td>revkey</td><td>吊销密钥或选定的子密钥</td><td><code>key 1</code>, 然后 <code>revkey</code></td></tr><tr><td>enable</td><td>启用密钥</td><td><code>enable</code></td></tr><tr><td>disable</td><td>禁用密钥</td><td><code>disable</code></td></tr><tr><td>clean</td><td>压缩不可用的用户标识并从密钥上移除不可用的签名</td><td><code>clean</code></td></tr><tr><td>minimize</td><td>压缩不可用的用户标识并从密钥上移除所有签名</td><td><code>minimize</code></td></tr></tbody></table>
<h3 id="导出">导出<a aria-hidden="true" tabindex="-1" href="#导出" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 导出公钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--armor</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--output</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">public-key.txt</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--export</span><span style="color:var(--shiki-color-text);"> [密钥ID]</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 导出私钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--armor</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--output</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">private-key.txt</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--export-secret-keys</span><span style="color:var(--shiki-color-text);"> [密钥ID]</span></span></code></pre></div>
<p>在这里,<code>--armor</code> 选项会生成.asc 后缀的 ASCII 类型的文本文件,如果不使用该选项,则会生成.gpg 后缀的二进制文件。</p>
<h3 id="导入">导入<a aria-hidden="true" tabindex="-1" href="#导入" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 从本地文件导入密钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--import</span><span style="color:var(--shiki-color-text);"> [密钥文件]</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 从服务器导入密钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--keyserver</span><span style="color:var(--shiki-color-text);"> [服务器] --search-keys [用户ID]</span></span></code></pre></div>
<h3 id="公布">公布<a aria-hidden="true" tabindex="-1" href="#公布" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 将密钥发布到公开服务器</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--send-keys</span><span style="color:var(--shiki-color-text);"> [密钥ID] --keyserver [服务器]</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 发布用户指纹</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--fingerprint</span><span style="color:var(--shiki-color-text);"> [密钥ID]</span></span></code></pre></div>
<h3 id="删除">删除<a aria-hidden="true" tabindex="-1" href="#删除" class="internal"> §</a></h3>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 删除指定公钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--delete-key</span><span style="color:var(--shiki-color-text);"> [密钥ID]</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 删除指定私钥</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--delete-secret-keys</span><span style="color:var(--shiki-color-text);"> [密钥ID]</span></span></code></pre></div>
<h2 id="常用选项">常用选项<a aria-hidden="true" tabindex="-1" href="#常用选项" class="internal"> §</a></h2>
<table><thead><tr><th>命令选项</th><th>描述</th><th>示例</th></tr></thead><tbody><tr><td>—list-keys</td><td>列出所有的密钥</td><td><code>gpg --list-keys</code></td></tr><tr><td>—gen-key</td><td>生成新的密钥对</td><td><code>gpg --gen-key</code></td></tr><tr><td>—delete-key</td><td>删除密钥</td><td><code>gpg --delete-key [key-id]</code></td></tr><tr><td>—import</td><td>导入密钥</td><td><code>gpg --import [key-file]</code></td></tr><tr><td>—export</td><td>导出公钥</td><td><code>gpg --export -a &quot;User Name&quot; > public.key</code></td></tr><tr><td>—armor</td><td>创建 ASCII 字符格式的输出(用于在邮件等场合)</td><td><code>gpg --armor --export [key-id]</code></td></tr><tr><td>—encrypt</td><td>加密文件</td><td><code>gpg --encrypt --recipient [key-id] [file]</code></td></tr><tr><td>—decrypt</td><td>解密文件</td><td><code>gpg --decrypt [file]</code></td></tr><tr><td>—sign</td><td>生成只有你自己可以识别的签名文件</td><td><code>gpg --sign [file]</code></td></tr><tr><td>—verify</td><td>验证签名文件</td><td><code>gpg --verify [file]</code></td></tr><tr><td>—edit-key</td><td>编辑密钥的详细设置,例如添加/删除别名、设置过期时间等</td><td><code>gpg --edit-key [key-id]</code></td></tr><tr><td>—send-keys</td><td>将密钥发送到 keyserver</td><td><code>gpg --send-keys [key-id]</code></td></tr><tr><td>—recv-keys</td><td>从 keyserver 接收密钥</td><td><code>gpg --recv-keys [key-id]</code></td></tr><tr><td>—refresh-keys</td><td>从 keyserver 更新所有密钥的信息</td><td><code>gpg --refresh-keys</code></td></tr><tr><td>—full-generate-key</td><td>使用全面设置来生成新的密钥对</td><td><code>gpg --full-generate-key</code></td></tr><tr><td>—quick-add-uid</td><td>快速添加新的用户 ID 到现有的密钥</td><td><code>gpg --quick-add-uid [key-id] [User ID]</code></td></tr><tr><td>—change-passphrase</td><td>改变密钥的保护密码</td><td><code>gpg --change-passphrase [key-id]</code></td></tr></tbody></table>
<h2 id="加密和解密">加密和解密<a aria-hidden="true" tabindex="-1" href="#加密和解密" class="internal"> §</a></h2>
<div data-rehype-pretty-code-fragment><pre style="background-color:var(--shiki-color-background);" tabindex="0" data-language="shell" data-theme="default"><code data-language="shell" data-theme="default"><span data-line><span style="color:var(--shiki-token-comment);"># 加密文件</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--recipient</span><span style="color:var(--shiki-color-text);"> [密钥ID] --output demo.en.txt --encrypt demo.txt</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 解密文件</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--decrypt</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">demo.en.txt</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--output</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">demo.de.txt</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">demo.en.txt</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 签名文件GPG格式</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--sign</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">test.txt</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 签名文件ASCII格式</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--clearsign</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">test.txt</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 生成单独签名</span></span>
<span data-line><span style="color:var(--shiki-token-comment);"># -a 选项会生成 ASCII 格式的签名</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">-a</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--detach-sign</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">test.txt</span></span>
<span data-line> </span>
<span data-line><span style="color:var(--shiki-token-comment);"># 验证签名</span></span>
<span data-line><span style="color:var(--shiki-token-function);">gpg</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">--verify</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">test.txt.asc</span><span style="color:var(--shiki-color-text);"> </span><span style="color:var(--shiki-token-string);">test.txt</span></span></code></pre></div></article></div><div class="right sidebar"><div class="graph "><h3>Graph View</h3><div class="graph-outer"><div id="graph-container" data-cfg="{&quot;drag&quot;:true,&quot;zoom&quot;:true,&quot;depth&quot;:1,&quot;scale&quot;:1.1,&quot;repelForce&quot;:0.5,&quot;centerForce&quot;:0.3,&quot;linkDistance&quot;:30,&quot;fontSize&quot;:0.6,&quot;opacityScale&quot;:1,&quot;showTags&quot;:true,&quot;removeTags&quot;:[]}"></div><svg version="1.1" id="global-graph-icon" xmlns="http://www.w3.org/2000/svg" xmlnsXlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 55 55" fill="currentColor" xmlSpace="preserve"><path d="M49,0c-3.309,0-6,2.691-6,6c0,1.035,0.263,2.009,0.726,2.86l-9.829,9.829C32.542,17.634,30.846,17,29,17
s-3.542,0.634-4.898,1.688l-7.669-7.669C16.785,10.424,17,9.74,17,9c0-2.206-1.794-4-4-4S9,6.794,9,9s1.794,4,4,4
c0.74,0,1.424-0.215,2.019-0.567l7.669,7.669C21.634,21.458,21,23.154,21,25s0.634,3.542,1.688,4.897L10.024,42.562
C8.958,41.595,7.549,41,6,41c-3.309,0-6,2.691-6,6s2.691,6,6,6s6-2.691,6-6c0-1.035-0.263-2.009-0.726-2.86l12.829-12.829
c1.106,0.86,2.44,1.436,3.898,1.619v10.16c-2.833,0.478-5,2.942-5,5.91c0,3.309,2.691,6,6,6s6-2.691,6-6c0-2.967-2.167-5.431-5-5.91
v-10.16c1.458-0.183,2.792-0.759,3.898-1.619l7.669,7.669C41.215,39.576,41,40.26,41,41c0,2.206,1.794,4,4,4s4-1.794,4-4
s-1.794-4-4-4c-0.74,0-1.424,0.215-2.019,0.567l-7.669-7.669C36.366,28.542,37,26.846,37,25s-0.634-3.542-1.688-4.897l9.665-9.665
C46.042,11.405,47.451,12,49,12c3.309,0,6-2.691,6-6S52.309,0,49,0z M11,9c0-1.103,0.897-2,2-2s2,0.897,2,2s-0.897,2-2,2
S11,10.103,11,9z M6,51c-2.206,0-4-1.794-4-4s1.794-4,4-4s4,1.794,4,4S8.206,51,6,51z M33,49c0,2.206-1.794,4-4,4s-4-1.794-4-4
s1.794-4,4-4S33,46.794,33,49z M29,31c-3.309,0-6-2.691-6-6s2.691-6,6-6s6,2.691,6,6S32.309,31,29,31z M47,41c0,1.103-0.897,2-2,2
s-2-0.897-2-2s0.897-2,2-2S47,39.897,47,41z M49,10c-2.206,0-4-1.794-4-4s1.794-4,4-4s4,1.794,4,4S51.206,10,49,10z"></path></svg></div><div id="global-graph-outer"><div id="global-graph-container" data-cfg="{&quot;drag&quot;:true,&quot;zoom&quot;:true,&quot;depth&quot;:-1,&quot;scale&quot;:0.9,&quot;repelForce&quot;:0.5,&quot;centerForce&quot;:0.3,&quot;linkDistance&quot;:30,&quot;fontSize&quot;:0.6,&quot;opacityScale&quot;:1,&quot;showTags&quot;:true,&quot;removeTags&quot;:[]}"></div></div></div><div class="toc desktop-only"><button type="button" id="toc" class><h3>Table of Contents</h3><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="fold"><polyline points="6 9 12 15 18 9"></polyline></svg></button><div id="toc-content"><ul class="overflow"><li class="depth-0"><a href="#简介" data-for="简介">简介</a></li><li class="depth-0"><a href="#gpg" data-for="gpg">GPG</a></li><li class="depth-1"><a href="#安装" data-for="安装">安装</a></li><li class="depth-1"><a href="#配置" data-for="配置">配置</a></li><li class="depth-1"><a href="#生成密钥" data-for="生成密钥">生成密钥</a></li><li class="depth-0"><a href="#常用命令" data-for="常用命令">常用命令</a></li><li class="depth-1"><a href="#查看" data-for="查看">查看</a></li><li class="depth-1"><a href="#编辑" data-for="编辑">编辑</a></li><li class="depth-1"><a href="#导出" data-for="导出">导出</a></li><li class="depth-1"><a href="#导入" data-for="导入">导入</a></li><li class="depth-1"><a href="#公布" data-for="公布">公布</a></li><li class="depth-1"><a href="#删除" data-for="删除">删除</a></li><li class="depth-0"><a href="#常用选项" data-for="常用选项">常用选项</a></li><li class="depth-0"><a href="#加密和解密" data-for="加密和解密">加密和解密</a></li></ul></div></div><div class="backlinks "><h3>Backlinks</h3><ul class="overflow"><li>No backlinks found</li></ul></div><div class="explorer mobile-only"><button type="button" id="explorer" data-behavior="collapse" data-collapsed="collapsed" data-savestate="true" data-tree="[{&quot;path&quot;:&quot;Journal&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Journal/2024&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Journal/2024/W33&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Obsidian&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Obsidian/Templates&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog/2018&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog/2020&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog/2021&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog/2022&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog/2023&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Blog/2024&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/个人成长&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/医学健康&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/历史&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/哲学宗教&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/心理&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/政治军事&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/教育学习&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/文学&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/生活百科&quot;,&quot;collapsed&quot;:true},{&quot;path&quot;:&quot;Personal/Book/社会文化&quot;,&quot;collapsed&quot;:true},{&qu
function toggleCallout() {
const outerBlock = this.parentElement;
outerBlock.classList.toggle(`is-collapsed`);
const collapsed = outerBlock.classList.contains(`is-collapsed`);
const height = collapsed ? this.scrollHeight : outerBlock.scrollHeight;
outerBlock.style.maxHeight = height + `px`;
let current = outerBlock;
let parent = outerBlock.parentElement;
while (parent) {
if (!parent.classList.contains(`callout`)) {
return;
}
const collapsed2 = parent.classList.contains(`is-collapsed`);
const height2 = collapsed2 ? parent.scrollHeight : parent.scrollHeight + current.scrollHeight;
parent.style.maxHeight = height2 + `px`;
current = parent;
parent = parent.parentElement;
}
}
function setupCallout() {
const collapsible = document.getElementsByClassName(
`callout is-collapsible`
);
for (const div of collapsible) {
const title = div.firstElementChild;
if (title) {
title.removeEventListener(`click`, toggleCallout);
title.addEventListener(`click`, toggleCallout);
const collapsed = div.classList.contains(`is-collapsed`);
const height = collapsed ? title.scrollHeight : div.scrollHeight;
div.style.maxHeight = height + `px`;
}
}
}
document.addEventListener(`nav`, setupCallout);
window.addEventListener(`resize`, setupCallout);
</script><script type="module">
import mermaid from 'https://cdn.jsdelivr.net/npm/mermaid/dist/mermaid.esm.min.mjs';
const darkMode = document.documentElement.getAttribute('saved-theme') === 'dark'
mermaid.initialize({
startOnLoad: false,
securityLevel: 'loose',
theme: darkMode ? 'dark' : 'default'
});
document.addEventListener('nav', async () => {
await mermaid.run({
querySelector: '.mermaid'
})
});
</script><script src="https://cdn.jsdelivr.net/npm/katex@0.16.7/dist/contrib/copy-tex.min.js" type="application/javascript"></script><script src="../../../../postscript.js" type="module"></script></html>