Privacy (PGP), from Phil's Pretty Good Software, is a high
security cryptographic software application for MSDOS,
Unix, VAX/VMS, and other computers. PGP allows
people to exchange files or messages with privacy,
authentication, and convenience. Privacy means that
only those intended to receive a message can read it.
Authentication means that messages that appear to be from
a particular person can only have originated from that
person. Convenience means that privacy and
authentication are provided without the hassles of
managing keys associated with conventional cryptographic
software. No secure channels are needed to exchange
keys between users, which makes PGP much easier to use.
This is because PGP is based on a powerful new technology
public key cryptography.
In order to
use PGP, you will first need to create a key set.
SSH into your account.
command "pgpk -g". This will prompt you for the
the type of your public key.
DSS/Diffie-Hellman - New algorithm for 5.0 (default)
Choose 1 or 2: -"Select RSA"-
your public/private keypair key size.
768 bits- Commercial grade, probably not currently
2. 1024 bits- High commercial grade, secure
for many years
3. 2048 bits- "Military" grade,
secure for the foreseeable future
Choose 1, 2 or 3, or enter desired number of bits
(768 - 2048): -"A key of 1024 bits is
more than enough, select that".
a user ID for your public key.
desired form for this user ID is your FULL name,
followed by your
E-mail address enclosed in <angle
brackets>, if you have an E-mail address.
Joe Smith <email@example.com>
If you violate this standard, you will lose much
of the benefits of
PGP 5.0's keyserver and email integration.
Enter a user ID for your public key:
-"Fill in the appropriate info"-
the validity period of your key in days from 0 - 999.
is forever (and the default): -"Enter 0 if
you want this key to last forever"-
a pass phrase to protect your private key(s).
pass phrase can be any sentence or phrase and may have
words, spaces, punctuation, or any other
Enter pass phrase: -"Fill in a good
passphrase that you are sure to remember"-
command "pgpk -xa userid -o public.key" (userid
refers to the user ID on step 2) This will produce a file
also download pgp from
create a keyset on your home computer.
this key set is created, you can start encrypting files on
SSH into your account.
the command "pgp -r userid file -o file.pgp"
("file" refers to the file you wish to encrypt).
This will produce an file"file.pgp" with the
encrypted content of "file".
Control Panel (http://www.yourdomain.com/menu) select
the contents of the file "public.key" created in
step 3 of the previous section. If you created the key
with PGP on your home computer copy the contents to the
on "Add". (You may not need to run this step if
you created the key from SSH.
on "To test sending a PGPMail".
You need to
set up your form to use the
action line should be
<FORM ACTION = "/cgi-sys/pgpmail.pl"
METHOD = "POST">
do all the programming work for you. You alter the
using hidden fields in your form.
three form fields that you must have in your form for
PGPMail to work correctly, recipient, username, and
This form field allows you to specify to whom you wish
form results to be mailed. Most likely you will want to
configure this option
as a hidden form field with a value equal to that of
your e-mail address.
<input type=hidden name="recipient"
This form field allows you to specify your username in
the system. This allows PGPMail to look for the
configuration files to encrypt the mail to be sent to
<input type=hidden name="username"
This form field allows you to specify the name of your
This will be the public key that PGPMail uses to encrypt
your mail. You must
possess the private key in order to decrypt the email
that is sent.
<input type=hidden name="keyname"