This is an old revision of the document!
How to generate a GPG Master Key with related subkeys?
Requirements
Disk Image
Download the latest Arch Linux or ArchBang Linux release and write it to a bootable CD or USB thumbdrive.
<sxh bash> ~$: dd if=archlinux-$VERSION-dual.iso of=/dev/$DEVICE bs=8192 </sxh>
Than boot your computer with it.
Effectively preventing pinentry from failing
gpg: problem with the agent: No pinentry
<sxh bash> ~$: echo "pinentry-program `which pinentry-tty`" » ./.gnupg/gpg-agent.conf </sxh>
Generating the master key
<sxh bash> ~$: gpg2 –expert –full-gen-key # 9 # 7 # 0 # y # Real NAME # E-Mail Address # Comment # O # y # T </sxh>
Generating the sub keys to your master key
Troubleshooting
- Error while generating key?
If you get the following error while the key generation:
gpg: can't connect to the agent: IPC connect call failed gpg: agent_genkey failed: No agent running Key generation failed: No agent running
it means your gpg-agent isn't running.
FAQ
- Why using Arch*Linux instead of something more security related like Tails?
In the moment of writing, Tails doesn't include the latest gpg2 package within its distribution. To narrow down as much obstacles as possible, I've chosen a distribution which includes all needed software packages.
References
Further Reading
- GPG KeyGenerator (An online service generating GPG keys within your browser. Advertised as secure and trustworthy, though not recommended.)