• Linux操作系统安全-使用gpg实现对称加密








    [root@node101.yinzhengjie.org.cn ~]# which gpg
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# rpm -qf /usr/bin/gpg
    [root@node101.yinzhengjie.org.cn ~]# 


    [root@node101.yinzhengjie.org.cn ~]# rpm -qi gnupg2
    Name        : gnupg2
    Version     : 2.0.22
    Release     : 5.el7_5
    Architecture: x86_64
    Install Date: Mon 08 Jul 2019 04:23:21 PM CST
    Group       : Applications/System
    Size        : 6637796
    License     : GPLv3+
    Signature   : RSA/SHA256, Fri 13 Jul 2018 11:56:02 PM CST, Key ID 24c6a8a7f4a80eb5
    Source RPM  : gnupg2-2.0.22-5.el7_5.src.rpm
    Build Date  : Fri 13 Jul 2018 09:06:54 PM CST
    Build Host  : x86-01.bsys.centos.org
    Relocations : (not relocatable)
    Packager    : CentOS BuildSystem <http://bugs.centos.org>
    Vendor      : CentOS
    URL         : http://www.gnupg.org/
    Summary     : Utility for secure communication and data storage
    Description :
    GnuPG is GNU's tool for secure communication and data storage.  It can
    be used to encrypt data and to create digital signatures.  It includes
    an advanced key management facility and is compliant with the proposed
    OpenPGP Internet standard as described in RFC2440 and the S/MIME
    standard as described by several RFCs.
    GnuPG 2.0 is a newer version of GnuPG with additional support for
    S/MIME.  It has a different design philosophy that splits
    functionality up into several modules. The S/MIME and smartcard functionality
    is provided by the gnupg2-smime package.
    [root@node101.yinzhengjie.org.cn ~]# 


    [root@node101.yinzhengjie.org.cn ~]# echo "尹正杰到此一游" > f1.txt
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 22 Dec 20 14:49 f1.txt
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# cat f1.txt 
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 



    [root@node101.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 22 Dec 20 14:49 f1.txt
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg -c f1.txt                            #执行该命令时会弹出一个如下图所示的对话框,需要我们交互式输入一个对称加密的密码,这个密码别忘记了,一会用到它。
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll                                   #上述命令执行成功后,会多出来一个名为f1.txt.gpg的文件,源文件不变。
    total 8
    -rw-r--r-- 1 root root 22 Dec 20 14:49 f1.txt
    -rw-r--r-- 1 root root 70 Dec 20 14:53 f1.txt.gpg
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# scp f1.txt.gpg root@node108.yinzhengjie.org.cn:~        #将加密后的文件拷贝到另外一台服务器上去。
    f1.txt.gpg                                                                                                                                100%   70    88.3KB/s   00:00    
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 


    [root@node108.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 70 Dec 20 14:57 f1.txt.gpg
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg -o f1.txt -d f1.txt.gpg           #对gpg加密的文件进行解密操作,会弹出一个如下图所示的对话框,输入我们上面加密时的密码即可。
    gpg: directory `/root/.gnupg' created
    gpg: new configuration file `/root/.gnupg/gpg.conf' created
    gpg: WARNING: options in `/root/.gnupg/gpg.conf' are not yet active during this run
    gpg: keyring `/root/.gnupg/secring.gpg' created
    gpg: keyring `/root/.gnupg/pubring.gpg' created
    gpg: CAST5 encrypted data
    gpg: encrypted with 1 passphrase
    gpg: WARNING: message was not integrity protected
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# ll                          #解密成功后,会生成一个新的文件,这个新的文件是我们上面使用"-o"参数指定的哟~
    total 8
    -rw-r--r-- 1 root root 22 Dec 20 15:01 f1.txt
    -rw-r--r-- 1 root root 70 Dec 20 14:57 f1.txt.gpg
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# cat f1.txt                      #发现解密后的数据是成功的
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 



    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys                  #目前没有管理的密钥
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --gen-key                   #我们使用该命令会生成私钥和公钥
    gpg (GnuPG) 2.0.22; Copyright (C) 2013 Free Software Foundation, Inc.
    This is free software: you are free to change and redistribute it.
    There is NO WARRANTY, to the extent permitted by law.
    gpg: keyring `/root/.gnupg/secring.gpg' created
    Please select what kind of key you want:
       (1) RSA and RSA (default)
       (2) DSA and Elgamal
       (3) DSA (sign only)
       (4) RSA (sign only)
    Your selection?                                         #我们在这里可以选择加密算法,默认使用RSA算法
    RSA keys may be between 1024 and 4096 bits long.
    What keysize do you want? (2048) 1024                            #我们可以可以指定加密的位数,默认是1024位
    Requested keysize is 1024 bits
    Please specify how long the key should be valid.
             0 = key does not expire
          <n>  = key expires in n days
          <n>w = key expires in n weeks
          <n>m = key expires in n months
          <n>y = key expires in n years
    Key is valid for? (0) 10                                    #设置密钥的有效期,默认未0,表示不过其,我这里输入的数字10,表示有效期是10天,我们也可以输入10w表示10个星期,也可输入10m表示10个月,还可以输入10y表示10年。
    Key expires at Tue 31 Dec 2019 02:56:15 PM CST
    Is this correct? (y/N) y                                    #这是一个确认提示,我们输入"y"即可,默认为"N",接下来就全是图像界面操作了,如下图所示。
    GnuPG needs to construct a user ID to identify your key.
    Real name: yinzhengjie
    Email address: 
    You selected this USER-ID:
    Change (N)ame, (C)omment, (E)mail or (O)kay/(Q)uit? O
    You need a Passphrase to protect your secret key.
    You don't want a passphrase - this is probably a *bad* idea!
    I will do it anyway.  You can change your passphrase at any time,
    using this program with the option "--edit-key".
    We need to generate a lot of random bytes. It is a good idea to perform
    some other action (type on the keyboard, move the mouse, utilize the
    disks) during the prime generation; this gives the random number
    generator a better chance to gain enough entropy.
    We need to generate a lot of random bytes. It is a good idea to perform
    some other action (type on the keyboard, move the mouse, utilize the
    disks) during the prime generation; this gives the random number
    generator a better chance to gain enough entropy.
    gpg: key 9A039AE7 marked as ultimately trusted
    public and secret key created and signed.
    gpg: checking the trustdb
    gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
    gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u
    gpg: next trustdb check due at 2019-12-31
    pub   1024R/9A039AE7 2019-12-21 [expires: 2019-12-31]
          Key fingerprint = FD59 DEBF 5278 6E06 5919  243A B0FB 8C5A 9A03 9AE7
    uid                  yinzhengjie
    sub   1024R/559B2D3F 2019-12-21 [expires: 2019-12-31]
    [root@node101.yinzhengjie.org.cn ~]#  
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll ~/.gnupg/                     #经过一系列操作后会有以下文件
    total 28
    -rw-------. 1 root root 7680 Dec 21 14:55 gpg.conf
    drwx------. 2 root root    6 Dec 21 14:58 private-keys-v1.d
    -rw-------. 1 root root  667 Dec 21 15:05 pubring.gpg                  #存放公钥文件路径
    -rw-------. 1 root root  667 Dec 21 15:05 pubring.gpg~
    -rw-------. 1 root root  600 Dec 21 15:05 random_seed
    -rw-------. 1 root root 1331 Dec 21 15:05 secring.gpg                  #存放私钥文件路径
    srwxr-xr-x. 1 root root    0 Dec 21 14:58 S.gpg-agent
    -rw-------. 1 root root 1280 Dec 21 15:05 trustdb.gpg
    [root@node101.yinzhengjie.org.cn ~]#  
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys                    #查看当前主机管理的密钥
    pub   1024R/9A039AE7 2019-12-21 [expires: 2019-12-31]
    uid                  yinzhengjie
    sub   1024R/559B2D3F 2019-12-21 [expires: 2019-12-31]
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 


    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys
    pub   1024R/45A32BE2 2019-12-20 [expires: 2019-12-30]
    uid                  yinzhengjie
    sub   1024R/83CADF8A 2019-12-20 [expires: 2019-12-30]
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll ~/.gnupg/
    total 28
    -rw------- 1 root root 7680 Dec 20 14:50 gpg.conf
    drwx------ 2 root root    6 Dec 20 14:50 private-keys-v1.d
    -rw------- 1 root root  667 Dec 20 15:41 pubring.gpg
    -rw------- 1 root root  667 Dec 20 15:41 pubring.gpg~
    -rw------- 1 root root  600 Dec 20 15:41 random_seed
    -rw------- 1 root root 1331 Dec 20 15:41 secring.gpg
    srwxr-xr-x 1 root root    0 Dec 20 15:28 S.gpg-agent
    -rw------- 1 root root 1280 Dec 20 15:41 trustdb.gpg
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll
    total 0
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg -a --export -o ~/yinzhengjie_pubkey
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 1008 Dec 20 19:28 yinzhengjie_pubkey
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# scp yinzhengjie_pubkey root@node108.yinzhengjie.org.cn:~
    yinzhengjie_pubkey                                                                                                                        100% 1008     1.3MB/s   00:00    
    [root@node101.yinzhengjie.org.cn ~]# 


    [root@node108.yinzhengjie.org.cn ~]# gpg --gen-key
    gpg (GnuPG) 2.0.22; Copyright (C) 2013 Free Software Foundation, Inc.
    This is free software: you are free to change and redistribute it.
    There is NO WARRANTY, to the extent permitted by law.
    Please select what kind of key you want:
       (1) RSA and RSA (default)
       (2) DSA and Elgamal
       (3) DSA (sign only)
       (4) RSA (sign only)
    Your selection? 
    RSA keys may be between 1024 and 4096 bits long.
    What keysize do you want? (2048) 1024
    Requested keysize is 1024 bits
    Please specify how long the key should be valid.
             0 = key does not expire
          <n>  = key expires in n days
          <n>w = key expires in n weeks
          <n>m = key expires in n months
          <n>y = key expires in n years
    Key is valid for? (0) 
    Key does not expire at all
    Is this correct? (y/N) y
    GnuPG needs to construct a user ID to identify your key.
    Real name: yinzhengjie2019
    Email address: 
    You selected this USER-ID:
    Change (N)ame, (C)omment, (E)mail or (O)kay/(Q)uit? O
    You need a Passphrase to protect your secret key.
    You don't want a passphrase - this is probably a *bad* idea!
    I will do it anyway.  You can change your passphrase at any time,
    using this program with the option "--edit-key".
    We need to generate a lot of random bytes. It is a good idea to perform
    some other action (type on the keyboard, move the mouse, utilize the
    disks) during the prime generation; this gives the random number
    generator a better chance to gain enough entropy.
    gpg: checking the trustdb
    gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
    gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u
    pub   1024R/F20B56D1 2019-12-20
          Key fingerprint = 31A2 D20D 499F EAC5 84F2  65E9 C197 A66A F20B 56D1
    uid                  yinzhengjie2019
    sub   1024R/80334CCC 2019-12-20
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# ll ~/.gnupg/
    total 28
    -rw------- 1 root root 7680 Dec 20 15:50 gpg.conf
    drwx------ 2 root root    6 Dec 20 15:51 private-keys-v1.d
    -rw------- 1 root root  659 Dec 20 17:02 pubring.gpg
    -rw------- 1 root root  659 Dec 20 17:02 pubring.gpg~
    -rw------- 1 root root  600 Dec 20 17:02 random_seed
    -rw------- 1 root root 1323 Dec 20 17:02 secring.gpg
    srwxr-xr-x 1 root root    0 Dec 20 15:51 S.gpg-agent
    -rw------- 1 root root 1280 Dec 20 17:02 trustdb.gpg
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --list-keys                #node108.yinzhengjie.org.cn节点也生成了密钥对啦
    pub   1024R/F20B56D1 2019-12-20
    uid                  yinzhengjie2019
    sub   1024R/80334CCC 2019-12-20
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 


    [root@node108.yinzhengjie.org.cn ~]# ll ~/.gnupg/
    total 28
    -rw------- 1 root root 7680 Dec 20 15:50 gpg.conf
    drwx------ 2 root root    6 Dec 20 15:51 private-keys-v1.d
    -rw------- 1 root root  659 Dec 20 17:02 pubring.gpg            #注意观察该文件大小,一会咱们要导入公钥,该文件大小就会发生变化
    -rw------- 1 root root  659 Dec 20 17:02 pubring.gpg~
    -rw------- 1 root root  600 Dec 20 17:02 random_seed
    -rw------- 1 root root 1323 Dec 20 17:02 secring.gpg
    srwxr-xr-x 1 root root    0 Dec 20 15:51 S.gpg-agent
    -rw------- 1 root root 1280 Dec 20 17:02 trustdb.gpg
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --list-keys
    pub   1024R/F20B56D1 2019-12-20
    uid                  yinzhengjie2019
    sub   1024R/80334CCC 2019-12-20
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 1008 Dec 20 19:29 yinzhengjie_pubkey
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --import ~/yinzhengjie_pubkey           #导入node101.yinzhengjie.org.cn的公钥
    gpg: key 45A32BE2: public key "yinzhengjie" imported
    gpg: Total number processed: 1
    gpg:               imported: 1  (RSA: 1)
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --list-keys                    #可以看到多了node101.yinzhengjie.org.cn的公钥啦~
    pub   1024R/F20B56D1 2019-12-20
    uid                  yinzhengjie2019
    sub   1024R/80334CCC 2019-12-20
    pub   1024R/45A32BE2 2019-12-20 [expires: 2019-12-30]
    uid                  yinzhengjie
    sub   1024R/83CADF8A 2019-12-20 [expires: 2019-12-30]
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# ll ~/.gnupg/
    total 28
    -rw------- 1 root root 7680 Dec 20 15:50 gpg.conf
    drwx------ 2 root root    6 Dec 20 15:51 private-keys-v1.d
    -rw------- 1 root root 1326 Dec 20 19:30 pubring.gpg                  #不难发现该文件大小变大了 
    -rw------- 1 root root  659 Dec 20 17:02 pubring.gpg~
    -rw------- 1 root root  600 Dec 20 17:02 random_seed
    -rw------- 1 root root 1323 Dec 20 17:02 secring.gpg
    srwxr-xr-x 1 root root    0 Dec 20 15:51 S.gpg-agent
    -rw------- 1 root root 1280 Dec 20 17:02 trustdb.gpg
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]#  


    [root@node108.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 1008 Dec 20 19:29 yinzhengjie_pubkey
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# echo "尹正杰到此一游" > test.log
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# ll
    total 8
    -rw-r--r-- 1 root root   22 Dec 20 19:33 test.log
    -rw-r--r-- 1 root root 1008 Dec 20 19:29 yinzhengjie_pubkey
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# cat test.log 
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --list-keys
    pub   1024R/F20B56D1 2019-12-20
    uid                  yinzhengjie2019
    sub   1024R/80334CCC 2019-12-20
    pub   1024R/45A32BE2 2019-12-20 [expires: 2019-12-30]
    uid                  yinzhengjie
    sub   1024R/83CADF8A 2019-12-20 [expires: 2019-12-30]
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg -e -r yinzhengjie test.log 
    gpg: D719A354: There is no assurance this key belongs to the named user
    pub  1024R/D719A354 2019-12-20 yinzhengjie
     Primary key fingerprint: 2BFC 4720 67E2 6239 F521  DF69 083B 5C92 ED52 774D
          Subkey fingerprint: 4862 316E D296 B6BA 5E71  EE7E 3E9C FD35 D719 A354
    It is NOT certain that the key belongs to the person named
    in the user ID.  If you *really* know what you are doing,
    you may answer the next question with yes.
    Use this key anyway? (y/N) y
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# ll
    total 12
    -rw-r--r-- 1 root root  22 Dec 20 19:33 test.log
    -rw-r--r-- 1 root root 236 Dec 20 20:10 test.log.gpg
    -rw-r--r-- 1 root root 992 Dec 20 20:07 yinzhengjie_pubkey
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# scp test.log.gpg root@node101.yinzhengjie.org.cn:~
    The authenticity of host 'node101.yinzhengjie.org.cn (' can't be established.
    ECDSA key fingerprint is SHA256:KEchoZnVBkijeoWfG2nvx2ptthsXv7IjkxIJYule57g.
    ECDSA key fingerprint is MD5:52:c8:f5:6e:5f:cf:44:ec:c4:11:60:d2:d0:31:3c:da.
    Are you sure you want to continue connecting (yes/no)? yes
    Warning: Permanently added 'node101.yinzhengjie.org.cn,' (ECDSA) to the list of known hosts.
    root@node101.yinzhengjie.org.cn's password: 
    test.log.gpg                                                                                                                              100%  236   303.1KB/s   00:00    
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 


    [root@node101.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 236 Dec 20 20:11 test.log.gpg
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg -d test.log.gpg               #直接解密数据会在当前终端显示
    gpg: encrypted with 1024-bit RSA key, ID D719A354, created 2019-12-20
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll
    total 4
    -rw-r--r-- 1 root root 236 Dec 20 20:11 test.log.gpg
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg -o res.log -d test.log.gpg           #将解密后的数据保存到指定文件中
    gpg: encrypted with 1024-bit RSA key, ID D719A354, created 2019-12-20
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# ll
    total 8
    -rw-r--r-- 1 root root  22 Dec 20 20:12 res.log
    -rw-r--r-- 1 root root 236 Dec 20 20:11 test.log.gpg
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# cat res.log                     #很显然数据是准确的
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 


    [root@node108.yinzhengjie.org.cn ~]# gpg --list-keys
    pub   1024R/ED52774D 2019-12-20
    uid                  yinzhengjie
    sub   1024R/D719A354 2019-12-20
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --delete-keys yinzhengjie
    gpg (GnuPG) 2.0.22; Copyright (C) 2013 Free Software Foundation, Inc.
    This is free software: you are free to change and redistribute it.
    There is NO WARRANTY, to the extent permitted by law.
    pub  1024R/ED52774D 2019-12-20 yinzhengjie
    Delete this key from the keyring? (y/N) y
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# gpg --list-keys
    [root@node108.yinzhengjie.org.cn ~]# 
    [root@node108.yinzhengjie.org.cn ~]# 


    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys
    pub   1024R/ED52774D 2019-12-20
    uid                  yinzhengjie
    sub   1024R/D719A354 2019-12-20
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --delete-secret-keys yinzhengjie        #要先删除私钥
    gpg (GnuPG) 2.0.22; Copyright (C) 2013 Free Software Foundation, Inc.
    This is free software: you are free to change and redistribute it.
    There is NO WARRANTY, to the extent permitted by law.
    sec  1024R/ED52774D 2019-12-20 yinzhengjie
    Delete this key from the keyring? (y/N) y
    This is a secret key! - really delete? (y/N) y
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys
    pub   1024R/ED52774D 2019-12-20
    uid                  yinzhengjie
    sub   1024R/D719A354 2019-12-20
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --delete-keys yinzhengjie            #在删除公钥,有私钥存在的情况下直接删除公钥会报错的哟~
    gpg (GnuPG) 2.0.22; Copyright (C) 2013 Free Software Foundation, Inc.
    This is free software: you are free to change and redistribute it.
    There is NO WARRANTY, to the extent permitted by law.
    pub  1024R/ED52774D 2019-12-20 yinzhengjie
    Delete this key from the keyring? (y/N) y
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys
    gpg: checking the trustdb
    gpg: no ultimately trusted keys found
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# gpg --list-keys
    [root@node101.yinzhengjie.org.cn ~]# 
    [root@node101.yinzhengjie.org.cn ~]# 



  • 相关阅读:
    【转】将Visual Studio武装到底
  • 原文地址:https://www.cnblogs.com/yinzhengjie/p/12070963.html
Copyright © 2020-2023  润新知