User Tools

Site Tools


guides:mac-pgp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
guides:mac-pgp [2017/03/07 01:48]
kyle Conclusion added. Guide completed
guides:mac-pgp [2018/09/03 17:25] (current)
Line 30: Line 30:
 {{https://​i.imgur.com/​5vzXAoJ.png}} ​ {{https://​i.imgur.com/​5vzXAoJ.png}} ​
  
-Once installed, the install wizard can be closed. MacOS will give you an option to move the DMG file to trash - thats a personal choice((If you are keeping the DMG as it has an uninstaller don't worry about that, GPGTools offer an uninstaller [[http://​gpgtools.org/​uninstaller | here]])).+Once installed, the install wizard can be closed. MacOS will give you an option to move the DMG file to trash - thats a personal choice((If you are keeping the DMG as it has an uninstaller don't worry about that, GPGTools offer an uninstaller [[https://​gpgtools.org/​uninstaller | here]])).
  
  
Line 36: Line 36:
 Go to ''​GPG Keychain''​ via Applications or Launchpad and open it up. At the top left click on ''​New''​. A box will pop up - expand the advanced options. Now you should have a box as seen below. Go to ''​GPG Keychain''​ via Applications or Launchpad and open it up. At the top left click on ''​New''​. A box will pop up - expand the advanced options. Now you should have a box as seen below.
  
-{{http://​i.imgur.com/​kIj96Ah.png}}+{{https://​i.imgur.com/​kIj96Ah.png}}
  
 Now, depending on what you are using PGP for, the boxes should be completed in slightly different ways Now, depending on what you are using PGP for, the boxes should be completed in slightly different ways
Line 45: Line 45:
   * **Key length:** 4096bit is default.   * **Key length:** 4096bit is default.
   * **Key expires:** Another one which is a personal choice.[[ https://​twitter.com/​thegrugq | TheGrugq]] says "A more secure mitigation against key loss is to generate new keys frequently"​ and having a relatively short expiry time helps to enforce this.    * **Key expires:** Another one which is a personal choice.[[ https://​twitter.com/​thegrugq | TheGrugq]] says "A more secure mitigation against key loss is to generate new keys frequently"​ and having a relatively short expiry time helps to enforce this. 
-  * **Passphrase:​** This is the most vital part of the process. Here is a quick explanation - taken from [[https://​twitter.com/​jerzygangi | @JerzyGangi'​s]] [[http://​notes.jerzygangi.com/​the-best-pgp-tutorial-for-mac-os-x-ever/​ | PGP for OS X]] tutorial. ​+  * **Passphrase:​** This is the most vital part of the process. Here is a quick explanation - taken from [[https://​twitter.com/​jerzygangi | @JerzyGangi'​s]] [[https://​notes.jerzygangi.com/​the-best-pgp-tutorial-for-mac-os-x-ever/​ | PGP for OS X]] tutorial. ​
     * The entire PGP encryption will rest on your passphrase. So, first and foremost... don't use a passphrase that other people know! Pick something only you will know, and others can't guess. And once you have a passphrase selected, don't give it to other people.     * The entire PGP encryption will rest on your passphrase. So, first and foremost... don't use a passphrase that other people know! Pick something only you will know, and others can't guess. And once you have a passphrase selected, don't give it to other people.
     * Second, do not use a password, but rather a passphrase -- a sentence. For example, "​Pennstate55"​ is less preferable than "I graduated from Penn State in 1955, ya heard?​!"​ **//The longer your passphrase, the more secure your key.//​** ​     * Second, do not use a password, but rather a passphrase -- a sentence. For example, "​Pennstate55"​ is less preferable than "I graduated from Penn State in 1955, ya heard?​!"​ **//The longer your passphrase, the more secure your key.//​** ​
Line 68: Line 68:
 Messages can be encrypted using the command line or using the GUI. The GUI is easiest on macOS and the instructions are below. Firstly, open up TextEdit (providing that it does not auto sync with iCloud). Set the type to plain text (using ''​⌘+Shift+T''​). Write out your message - again depending on the sensitivity be aware of your surroundings. Select all the message (''​⌘+A''​) and right click. Select the ''​Encrypt selection to new window''​ option, as seen below. Messages can be encrypted using the command line or using the GUI. The GUI is easiest on macOS and the instructions are below. Firstly, open up TextEdit (providing that it does not auto sync with iCloud). Set the type to plain text (using ''​⌘+Shift+T''​). Write out your message - again depending on the sensitivity be aware of your surroundings. Select all the message (''​⌘+A''​) and right click. Select the ''​Encrypt selection to new window''​ option, as seen below.
  
-{{http://​i.imgur.com/​jMaDjhq.png}}+{{https://​i.imgur.com/​jMaDjhq.png}}
  
 A popup box will appear asking you to select a recipient((If you have multiple keys, you will also need to select what key to sign with)). Tick the sign box too, if you wish to sign your message. If you choose to sign the message, you will be asked to enter your passphrase. ​ A popup box will appear asking you to select a recipient((If you have multiple keys, you will also need to select what key to sign with)). Tick the sign box too, if you wish to sign your message. If you choose to sign the message, you will be asked to enter your passphrase. ​
Line 74: Line 74:
 Once this is completed, a PGP message block will appear in a separate window. See below. Once this is completed, a PGP message block will appear in a separate window. See below.
  
-{{http://​i.imgur.com/​Ao8uTfO.png}}+{{https://​i.imgur.com/​Ao8uTfO.png}}
  
 This block can then be selected, copy and pasted into the email client of your choice to be sent to the recipient. Who can then go on to decrypt the message. This block can then be selected, copy and pasted into the email client of your choice to be sent to the recipient. Who can then go on to decrypt the message.
guides/mac-pgp.txt · Last modified: 2018/09/03 17:25 (external edit)