September 23rd, 2011, 12:26 PM
[PGP/GnuPG]Importing and signing keys
I need to export an existing PGP key and import it into GnuPG on a different machine.
This is how I did the export:
(this is from the pgp installation directory that contains secring.skr).
pgp -kx myuser _myuser_public
pgp -kx myuser _myuser_private secring.skr
This produced two files:
Then I moved them to the target machine and did this:
The later gives me the message "key not changed". Not sure what it means.
gpg --import _myuser_public.pgp
gpg --import _myuser_private.pgp
Now if I try to encrypt the file "test" with gpg:
I get this message:
gpg --encrypt -r myuser test
(then there is a command prompt for Y/N).
There is no assurance this key belongs to the named user.
My understanding is that I am supposed to sign the key for my user. So, I tried doing this:
pg --edit-key myuser
Then I see a GPG command prompt and issue the command "sign". I get the message:
pub xxxx created: xxxx expires: xxxx usage: xxxx
trust: unknown validity: unknown
sub xxx created: xxxx xxxx: never usage:xxxx
At this point, I am not sure how to proceed. What else do I need to do to make the key trusted? I've read a lot of documentation on the web, but it hasn't been very helpflul.
gpg: no default secret key: No secret key
Thanks in advance.