Silk Road forums

Discussion => Newbie discussion => Topic started by: tastylures on May 13, 2013, 10:32 pm

Title: HELP: PGP for messages
Post by: tastylures on May 13, 2013, 10:32 pm
New to the PGP thing. Used GPGTools to create my keys. Now I'm not exactly sure how to go about using them.
A couple questions:
-Should I encrypt messages to vendors on SR if they are just about product inquiry/special orders?
-How do I encrypt something appropriately? (How do I initiate the encryption, where do I put their/my public key)

I guess just a general quick shakedown on how to encrypt a short textual message, and how to put that in a message to vendor or in an email (I'd assume email would just upload the file as an attachement?)

Thanks!
Just wanting to keep security up and not be one of those ignorant folks.

-tastylures
Title: Re: PGP for messages
Post by: mrmilleripresume on May 13, 2013, 10:42 pm
I'm certainly no expert on PGP, but the program I use is GPG4USB.  I like it because you can run it on Linux or Windows off of a USB drive, so you can always have it with you. It's easy to create your own keys and to import keys so that you can encrypt messages for specific people/vendors, etc.  Give ita shot and see if that doesn't work for you. A really easy and intuitive program to use.
Title: Re: HELP: PGP for messages
Post by: tastylures on May 13, 2013, 10:50 pm
I use a mac :(
Also, I was able to create keys and import them all just fine.
I'm just not certain exactly how I encrypt a message using a key now that I have one and can (obviously) get the other person's public key.
How do I make an encrypted message?
Anyone willing to help me through some messaging or emailing?
Thanks!
Title: Re: HELP: PGP for messages
Post by: Imperialised on May 13, 2013, 10:55 pm
Just watch this man:

http://www.youtube.com/watch?v=SywCI91kfq0

Simple!

Its how I learned
Title: Re: HELP: PGP for messages
Post by: tastylures on May 13, 2013, 11:07 pm
Thanks,
I'll take a look at it and hopefully learn this.
Title: Re: HELP: PGP for messages
Post by: bighorn on May 13, 2013, 11:14 pm
Read the Newbie PGP Club thread above. Its full of instructions and people who will practice sending messages. Handy way to then pad your post count without spamming.
Title: Re: HELP: PGP for messages
Post by: offbeatadam on May 13, 2013, 11:21 pm
The PGP club post has a lot of good info.

As for your question on what you should or shouldn't encrypt, personally I encrypt & sign all messages that aren't simple small talk/simple questions that don't involve product specifically, otherwise I sign it. You can never be too careful. Signing at the minimum validates that you are who you say you are, and that you have attested that the message sent came from you. When you use the recipients public key in addition, it also acts as a validation that the message you intended to send, is also intended for the destination person.

Encryption should be done using the recipients public key - this is the reason that they give their public keys out. Doing so means that they are the only person that can decrypt the message (other than you, since you also use your key, though you can also choose to not allow this.), as they are the only one that has their own private key and passphrase that enables the usage of that key.

As for how to do all of this, the instructions and videos for all operating systems are very well written in the PGP Club thread :)
Title: Re: HELP: PGP for messages
Post by: tastylures on May 15, 2013, 08:06 am
Gpg4usb is a very good portable PGP solution (and it's free!) and is the one I use on my encrypted USB drive. You can get it at www.gpg4usb.cpunk.de

I can't really give information on your original question as I don't use that tool, but to encrypt something using gpg4usb, all you have to do is tick the box of the key you wish to encrypt in and hit "encrypt". and more.... on to mine.

StExo:
-----BEGIN PGP MESSAGE-----
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=jxpa
-----END PGP MESSAGE-----
Title: Re: HELP: PGP for messages
Post by: tastylures on May 15, 2013, 11:22 am
Just a shout out to PurpleBalloons54 and StExo:
Thank you for communicating with me so quickly and verifying my encryption.
You folks get props in my book for being so willing to help someone new to this whole situation.
Thanks again!
-tastylures
Title: Re: HELP: PGP for messages
Post by: moonsafari on May 16, 2013, 08:38 am
Another question: say you encrypt your message to a vendor using his public key, how is he supposed to reply an encrypted message to you? There doesn't seem to be a 'profile page' or something for buyers where you can put your public key on. So the only way is to add your public key to the first message you send to someone?
Title: Re: HELP: PGP for messages
Post by: moonsafari on May 16, 2013, 12:53 pm
Bump.
Title: Re: HELP: PGP for messages
Post by: RZN8D on May 16, 2013, 12:57 pm
Good question moonsafari
Title: Re: HELP: PGP for messages
Post by: moonsafari on May 16, 2013, 01:26 pm
That's what I thought. Thanks for the help StExo. :) Will post my public key somewhere soon enough!
Title: Re: HELP: PGP for messages
Post by: tastylures on May 20, 2013, 09:11 am
Where's a good place to post my public key?

Also, StExo, when I put your message into a file and tried to decrypt it, an error was shown saying "no private key" although I shouldn't need one since I added your public key.
Title: Re: HELP: PGP for messages
Post by: mrmilleripresume on May 20, 2013, 01:44 pm
You can post your public key here: http://dkn255hz262ypmii.onion/index.php?topic=174.msg824#msg824

The reason you couldn't decrypt the message you encrypted for StExo is because you encrypted it using his public key....so you'd need his private key to decrypt it. ;)
Title: Re: HELP: PGP for messages
Post by: tastylures on August 06, 2013, 01:34 am
Hey,
I'd just like to thank all of you for helping me figure this stuff out. It has been going quite well since then!

If anyone reads this looking for help, feel free to PM me and I'll work with you! It's such a fantastic and easy system that can completely save your butt!

-tastylures