- Timestamp:
- 01/28/2016 01:33:30 AM (8 years ago)
- Branches:
- systemd-13485
- Children:
- 852ccfd5
- Parents:
- 2037ec4
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/gnupg2.xml
r2037ec4 r1e76622 5 5 %general-entities; 6 6 7 <!ENTITY gnupg2-download-http " 7 <!ENTITY gnupg2-download-http "https://gnupg.org/ftp/gcrypt/gnupg/gnupg-&gnupg2-version;.tar.bz2"> 8 8 <!ENTITY gnupg2-download-ftp "ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-&gnupg2-version;.tar.bz2"> 9 <!ENTITY gnupg2-md5sum " ebdf92b15b8bcd8579b643c7f41a3238">10 <!ENTITY gnupg2-size " 4.7MB">11 <!ENTITY gnupg2-buildsize "1 01 MB (with tests and optional documentation)">12 <!ENTITY gnupg2-time " 1.0 SBU (with tests)">9 <!ENTITY gnupg2-md5sum "f0a7cb09fe119f8b82eba7efecd27dc0"> 10 <!ENTITY gnupg2-size "5 MB"> 11 <!ENTITY gnupg2-buildsize "112 MB (with tests and docs - additional 8 MB for alternate formats docs)"> 12 <!ENTITY gnupg2-time "0.9 SBU (with tests and docs)"> 13 13 ]> 14 14 … … 30 30 <title>Introduction to GnuPG</title> 31 31 32 <para> 33 The <application>GnuPG</application> package is GNU's tool for secure 34 communication and data storage. It can be used to encrypt data and to 35 create digital signatures. It includes an advanced key management 36 facility and is compliant with the proposed OpenPGP Internet standard 37 as described in RFC2440 and the S/MIME standard as described by several 38 RFCs. GnuPG 2 is the stable version of GnuPG integrating support for 39 OpenPGP and S/MIME. 40 </para> 41 42 &lfs76_checked; 32 <para>The <application>GnuPG</application> package is GNU's tool for 33 secure communication and data storage. It can be used to encrypt data and 34 to create digital signatures. It includes an advanced key management 35 facility and is compliant with the proposed OpenPGP Internet standard as 36 described in RFC2440 and the S/MIME standard as described by several RFCs. 37 GnuPG 2 is the stable version of GnuPG integrating support for OpenPGP and 38 S/MIME.</para> 39 40 &lfs78_checked; 43 41 44 42 <bridgehead renderas="sect3">Package Information</bridgehead> 45 43 <itemizedlist spacing="compact"> 46 44 <listitem> 47 <para> 48 Download (HTTP): <ulink url="&gnupg2-download-http;"/> 49 </para> 50 </listitem> 51 <listitem> 52 <para> 53 Download (FTP): <ulink url="&gnupg2-download-ftp;"/> 54 </para> 55 </listitem> 56 <listitem> 57 <para> 58 Download MD5 sum: &gnupg2-md5sum; 59 </para> 60 </listitem> 61 <listitem> 62 <para> 63 Download size: &gnupg2-size; 64 </para> 65 </listitem> 66 <listitem> 67 <para> 68 Estimated disk space required: &gnupg2-buildsize; 69 </para> 70 </listitem> 71 <listitem> 72 <para> 73 Estimated build time: &gnupg2-time; 74 </para> 45 <para>Download (HTTP): <ulink url="&gnupg2-download-http;"/></para> 46 </listitem> 47 <listitem> 48 <para>Download (FTP): <ulink url="&gnupg2-download-ftp;"/></para> 49 </listitem> 50 <listitem> 51 <para>Download MD5 sum: &gnupg2-md5sum;</para> 52 </listitem> 53 <listitem> 54 <para>Download size: &gnupg2-size;</para> 55 </listitem> 56 <listitem> 57 <para>Estimated disk space required: &gnupg2-buildsize;</para> 58 </listitem> 59 <listitem> 60 <para>Estimated build time: &gnupg2-time;</para> 75 61 </listitem> 76 62 </itemizedlist> 77 63 78 <bridgehead renderas="sect3">GnuPG Dependencies</bridgehead>64 <bridgehead renderas="sect3">GnuPG 2 Dependencies</bridgehead> 79 65 80 66 <bridgehead renderas="sect4">Required</bridgehead> … … 82 68 <xref linkend="libassuan"/>, 83 69 <xref linkend="libgcrypt"/>, 84 <xref linkend="libksba"/> and70 <xref linkend="libksba"/>, and 85 71 <xref linkend="npth"/> 86 72 </para> … … 88 74 <bridgehead renderas="sect4">Recommended</bridgehead> 89 75 <para role="recommended"> 90 <xref linkend="pinentry"/> (Run-time requirement for 91 most ofthe package's functionality)76 <xref linkend="pinentry"/> (Run-time requirement for most of 77 the package's functionality) 92 78 </para> 93 79 … … 95 81 <para role="optional"> 96 82 <xref linkend="curl"/>, 83 <xref linkend="libusb-compat"/>, 84 an <xref linkend="server-mail"/>, 85 <xref linkend="openldap"/>, 86 <xref linkend="sqlite"/>, 87 <xref linkend="texlive"/> (or <xref linkend="tl-installer"/>), and 97 88 <ulink url="http://www.chiark.greenend.org.uk/~ian/adns/">GNU 98 ADNS</ulink>, 99 <xref linkend="libusb-compat"/>, 100 an <xref linkend="server-mail"/> and 101 <xref linkend="openldap"/> 89 adns</ulink> 102 90 </para> 103 91 104 92 <para condition="html" role="usernotes">User Notes: 105 <ulink url="&blfs-wiki;/gnupg2"/>106 </para> 93 <ulink url="&blfs-wiki;/gnupg2"/></para> 94 107 95 </sect2> 108 96 … … 110 98 <title>Installation of GnuPG</title> 111 99 112 <para> 113 Install <application>GnuPG</application> by running the following 114 commands: 115 </para> 116 117 <screen><userinput>./configure --prefix=/usr \ 118 --sysconfdir=/etc \ 100 <warning> 101 <para> 102 If you are upgrading from gnupg prior to version 2.1, upstream 103 developers recommend to backup 104 <filename class="directory">~/.gnupg</filename>, because some additional 105 configuration will probably be necessary, and you could lose your keys. 106 You can find instructions at 107 <ulink url="http://jo-ke.name/wp/?p=111"></ulink> and 108 <ulink url="https://wiki.archlinux.org/index.php/GnuPG#.22Lost.22_keys.2C_upgrading_to_gnupg_version_2.1"></ulink>. 109 </para> 110 </warning> 111 112 <para>If the top directory path where the source is unpacked contains 113 symbolic links, the openpgp tests might fail. If this is your case and 114 you wish to run the test suite, fix that with:</para> 115 116 <screen><userinput>sed -e 's|\(GNUPGHOME\)=\$(abs_builddir)|\1=`/bin/pwd`|' \ 117 -i tests/openpgp/Makefile.in</userinput></screen> 118 119 <para>Install <application>GnuPG</application> by running the following 120 commands:</para> 121 122 <screen><userinput>./configure --prefix=/usr \ 119 123 --enable-symcryptrun \ 120 124 --docdir=/usr/share/doc/gnupg-&gnupg2-version; && 121 125 make && 122 126 123 makeinfo --html --no-split -o doc/gnupg_nochunks.html doc/gnupg.texi &&124 makeinfo --plaintext -o doc/gnupg.txt doc/gnupg.texi</userinput></screen> 125 126 <para>127 If you have <xref linkend="texlive"/> installed and you wish 128 to create documentation in alternate formats, issue the129 following commands:130 </para>127 makeinfo --html --no-split \ 128 -o doc/gnupg_nochunks.html doc/gnupg.texi && 129 makeinfo --plaintext \ 130 -o doc/gnupg.txt doc/gnupg.texi</userinput></screen> 131 132 <para>If you have <xref linkend="texlive"/> 133 installed and you wish to create documentation in alternate formats, 134 issue the following commands:</para> 131 135 132 136 <screen><userinput>make -C doc pdf ps html</userinput></screen> 133 137 134 <para> 135 To test the results, issue: <command>make check</command>. 136 </para> 137 138 <para> 139 Now, as the <systemitem class="username">root</systemitem> user: 140 </para> 141 142 <screen role="root"><userinput>make install && 143 144 for f in gpg gpgv ; do 145 ln -sfv ${f}2 /usr/bin/${f} && 146 ln -sfv ${f}2.1 /usr/share/man/man1/${f}.1 147 done && 148 149 install -v -dm755 /usr/share/doc/gnupg-&gnupg2-version;/html && 150 install -v -m644 doc/gnupg_nochunks.html \ 151 /usr/share/doc/gnupg-&gnupg2-version;/gnupg.html && 152 install -v -m644 doc/*.texi doc/gnupg.txt \ 153 /usr/share/doc/gnupg-&gnupg2-version;</userinput></screen> 154 155 <para> 156 If you created alternate formats of the documentation, install 157 it using the following command as the 158 <systemitem class="username">root</systemitem> user: 159 </para> 138 <para>To test the results, issue: <command>make check</command>.</para> 139 140 <para>Note that if you have already installed 141 <application>GnuPG</application>, the instructions below will overwrite 142 <filename>/usr/share/man/man1/gpg-zip.1</filename>. Now, as the 143 <systemitem class="username">root</systemitem> user:</para> 144 145 <screen role="root"><userinput>make install && 146 147 install -v -m755 -d /usr/share/doc/gnupg-&gnupg2-version;/html && 148 install -v -m644 doc/gnupg_nochunks.html \ 149 /usr/share/doc/gnupg-&gnupg2-version;/html/gnupg.html && 150 install -v -m644 doc/*.texi doc/gnupg.txt \ 151 /usr/share/doc/gnupg-&gnupg2-version;</userinput></screen> 152 153 <para>We recommend the creation of symlinks for compatibility with the first 154 version of GnuPG, because some programs or scripts need them. Issue, as 155 <systemitem class="username">root</systemitem> user:</para> 156 157 <screen role="root"><userinput>for f in gpg gpgv 158 do 159 ln -svf ${f}2.1 /usr/share/man/man1/$f.1 && 160 ln -svf ${f}2 /usr/bin/$f 161 done 162 unset f</userinput></screen> 163 164 <para>If you created alternate formats of the documentation, install it 165 using the following command as the 166 <systemitem class="username">root</systemitem> user:</para> 160 167 161 168 <screen role="root"><userinput>install -v -m644 doc/gnupg.html/* \ … … 169 176 <title>Command Explanations</title> 170 177 171 <para> 172 <parameter>--enable-symcryptrun</parameter>: This switch enables 173 building the symcryptrun program. 174 </para> 175 176 <para> 177 <command>ln -sfv ...</command>: This command creates symlinks for 178 compatibility with the first version of 179 <application>GnuPG</application>. 180 </para> 178 <para><parameter>--docdir=/usr/share/doc/gnupg-&gnupg2-version;</parameter>: 179 This switch changes the default docdir to <filename 180 class="directory">/usr/share/doc/gnupg-&gnupg2-version;</filename>.</para> 181 182 <para><parameter>--enable-symcryptrun</parameter>: This switch enables 183 building the symcryptrun program.</para> 184 185 <para><option>--enable-g13</option>: This switch enables building the 186 g13 program.</para> 181 187 182 188 </sect2> … … 191 197 192 198 <seglistitem> 193 <seg> 194 addgnupghome, applygnupgdefaults, dirmngr, dirmngr-client, gpg, gpg2, 195 gpg-agent, gpgconf, gpg-connect-agent, gpgkey2ssh, gpgparsemail, 196 gpgsm, gpgsm-gencert.sh, gpgtar, gpgv, gpgv2, kbxutil, 197 symcryptrun and watchgnupg 198 </seg> 199 <seg> 200 None 201 </seg> 202 <seg> 203 /usr/share/doc/gnupg-&gnupg2-version; and 204 /usr/share/gnupg 205 </seg> 199 <seg>addgnupghome, applygnupgdefaults, dirmngr, dirmngr-client, g13, 200 gpg-agent, gpg-connect-agent, gpg, gpg2, gpgconf, gpgkey2ssh, 201 gpgparsemail, gpgsm, gpgtar, gpgv, gpgv2, kbxutil, symcryptrun, and 202 watchgnupg</seg> 203 <seg>None</seg> 204 <seg>/usr/share/doc/gnupg-&gnupg2-version; and 205 /usr/share/gnupg</seg> 206 206 </seglistitem> 207 207 </segmentedlist> … … 215 215 <term><command>addgnupghome</command></term> 216 216 <listitem> 217 <para> 218 is used to create and populate user's 219 <filename class="directory">~/.gnupg</filename> directories. 220 </para> 217 <para>is used to create and populate user's 218 <filename class='directory'>~/.gnupg</filename> directories</para> 221 219 <indexterm zone="gnupg2 addgnupghome"> 222 220 <primary sortas="b-addgnupghome">addgnupghome</primary> … … 228 226 <term><command>applygnupgdefaults</command></term> 229 227 <listitem> 230 <para> 231 is a wrapper script used to run <command>gpgconf</command> 232 with the <parameter>--apply-defaults</parameter> parameter 233 on all user's GnuPG home directories. 234 </para> 228 <para>is a wrapper script used to run <command>gpgconf</command> 229 with the <parameter>--apply-defaults</parameter> parameter on all 230 user's GnuPG home directories.</para> 235 231 <indexterm zone="gnupg2 applygnupgdefaults"> 236 232 <primary sortas="b-applygnupgdefaults">applygnupgdefaults</primary> … … 238 234 </listitem> 239 235 </varlistentry> 240 236 241 237 <varlistentry id="dirmngr"> 242 238 <term><command>dirmngr</command></term> … … 261 257 </varlistentry> 262 258 259 <varlistentry id="g13"> 260 <term><command>g13</command></term> 261 <listitem> 262 <para>is a tool to create, mount or unmount an encrypted file system 263 container (optional).</para> 264 <indexterm zone="gnupg2 g13"> 265 <primary sortas="b-g13">g13</primary> 266 </indexterm> 267 </listitem> 268 </varlistentry> 269 263 270 <varlistentry id="gpg-agent"> 264 271 <term><command>gpg-agent</command></term> 265 272 <listitem> 266 <para> 267 is a daemon used to manage secret (private) keys independently 268 from any protocol. It is used as a backend for 269 <command>gpg</command> and <command>gpgsm</command> as well as 270 for a couple of other utilities. 271 </para> 273 <para>is a daemon used to manage secret (private) keys independently 274 from any protocol. It is used as a backend for <command>gpg2</command> 275 and <command>gpgsm</command> as well as for a couple of other 276 utilities.</para> 272 277 <indexterm zone="gnupg2 gpg-agent"> 273 278 <primary sortas="b-gpg-agent">gpg-agent</primary> … … 279 284 <term><command>gpg-connect-agent</command></term> 280 285 <listitem> 281 <para> 282 is a utility used to communicate with a running 283 <command>gpg-agent</command>. 284 </para> 286 <para>is a utility used to communicate with a running 287 <command>gpg-agent</command>.</para> 285 288 <indexterm zone="gnupg2 gpg-connect-agent"> 286 289 <primary sortas="b-gpg-connect-agent">gpg-connect-agent</primary> … … 289 292 </varlistentry> 290 293 294 <varlistentry id="gpg"> 295 <term><command>gpg</command></term> 296 <listitem> 297 <para>(optional) is a symlink to <command>gpg2</command> for 298 compatibility with the first version of GnuPG.</para> 299 <indexterm zone="gnupg2 gpg"> 300 <primary sortas="b-gpg">gpg</primary> 301 </indexterm> 302 </listitem> 303 </varlistentry> 304 291 305 <varlistentry id="gpg2"> 292 306 <term><command>gpg2</command></term> 293 307 <listitem> 294 <para> 295 is the OpenPGP part of the GNU Privacy Guard (GnuPG). It is a 296 tool used to provide digital encryption and signing services 297 using the OpenPGP standard. 298 </para> 308 <para>is the OpenPGP part of the GNU Privacy Guard (GnuPG). It is a 309 tool used to provide digital encryption and signing services using 310 the OpenPGP standard.</para> 299 311 <indexterm zone="gnupg2 gpg2"> 300 312 <primary sortas="b-gpg2">gpg2</primary> … … 306 318 <term><command>gpgconf</command></term> 307 319 <listitem> 308 <para> 309 is a utility used to automatically and reasonable safely 310 query and modify configuration files in the 311 <filename class="directory">~/.gnupg</filename> home 312 directory. It is designed not to be invoked manually by 313 the user, but automatically by graphical user interfaces. 314 </para> 320 <para>is a utility used to automatically and reasonably safely 321 query and modify configuration files in the 322 <filename class='directory'>~/.gnupg</filename> home directory. It is 323 designed not to be invoked manually by the user, but automatically by 324 graphical user interfaces.</para> 315 325 <indexterm zone="gnupg2 gpgconf"> 316 326 <primary sortas="b-gpgconf">gpgconf</primary> … … 333 343 <term><command>gpgparsemail</command></term> 334 344 <listitem> 335 <para> 336 is a utility currently only useful for debugging. Run it with 337 <parameter>--help</parameter> for usage information. 338 </para> 345 <para>is a utility currently only useful for debugging. Run it with 346 <parameter>--help</parameter> for usage information.</para> 339 347 <indexterm zone="gnupg2 gpgparsemail"> 340 348 <primary sortas="b-gpgparsemail">gpgparsemail</primary> … … 346 354 <term><command>gpgsm</command></term> 347 355 <listitem> 348 <para> 349 is a tool similar to <command>gpg</command> used to provide digital 350 encryption and signing services on X.509 certificates and the CMS 351 protocol. It is mainly used as a backend for S/MIME mail processing. 352 </para> 356 <para>is a tool similar to <command>gpg2</command> used to provide 357 digital encryption and signing services on X.509 certificates and the 358 CMS protocol. It is mainly used as a backend for S/MIME mail 359 processing.</para> 353 360 <indexterm zone="gnupg2 gpgsm"> 354 361 <primary sortas="b-gpgsm">gpgsm</primary> … … 357 364 </varlistentry> 358 365 359 <!-- 360 <varlistentry id="gpgsm-gencert.sh"> 361 <term><command>gpgsm-gencert.sh</command></term> 362 <listitem> 363 <para> 364 is a simple tool used to interactively generate a certificate 365 request which will be printed to stdout. 366 </para> 367 <indexterm zone="gnupg2 gpgsm-gencert.sh"> 368 <primary sortas="b-gpgsm-gencert.sh">gpgsm-gencert.sh</primary> 369 </indexterm> 370 </listitem> 371 </varlistentry> 372 373 --> 366 <varlistentry id="gpgtar"> 367 <term><command>gpgtar</command></term> 368 <listitem> 369 <para> is a tool to encrypt or sign files into an archive.</para> 370 <indexterm zone="gnupg2 gpgtar"> 371 <primary sortas="b-gpgtar">gpgtar</primary> 372 </indexterm> 373 </listitem> 374 </varlistentry> 375 376 <varlistentry id="gpgv"> 377 <term><command>gpgv</command></term> 378 <listitem> 379 <para>(optional) is a symlink to <command>gpgv2</command> for 380 compatibility with the first version of GnuPG.</para> 381 <indexterm zone="gnupg2 gpgv"> 382 <primary sortas="b-gpgv">gpgv</primary> 383 </indexterm> 384 </listitem> 385 </varlistentry> 386 374 387 <varlistentry id="gpgv2"> 375 388 <term><command>gpgv2</command></term> 376 389 <listitem> 377 <para> 378 is a verify only version of <command>gpg2</command>. 379 </para> 390 <para>is a verify only version of <command>gpg2</command>.</para> 380 391 <indexterm zone="gnupg2 gpgv2"> 381 392 <primary sortas="b-gpgv2">gpgv2</primary> … … 387 398 <term><command>kbxutil</command></term> 388 399 <listitem> 389 <para> 390 is used to list, export and import Keybox data. 391 </para> 400 <para>is used to list, export and import Keybox data.</para> 392 401 <indexterm zone="gnupg2 kbxutil"> 393 402 <primary sortas="b-kbxutil">kbxutil</primary> … … 399 408 <term><command>symcryptrun</command></term> 400 409 <listitem> 401 <para> 402 is a simple symmetric encryption tool. 403 </para> 410 <para>is a simple symmetric encryption tool.</para> 404 411 <indexterm zone="gnupg2 symcryptrun"> 405 412 <primary sortas="b-symcryptrun">symcryptrun</primary> … … 411 418 <term><command>watchgnupg</command></term> 412 419 <listitem> 413 <para> 414 is used to listen to a Unix Domain socket created by any of 415 the GnuPG tools. 416 </para> 420 <para>is used to listen to a Unix Domain socket created by any of 421 the GnuPG tools.</para> 417 422 <indexterm zone="gnupg2 watchgnupg"> 418 423 <primary sortas="b-watchgnupg">watchgnupg</primary>
Note:
See TracChangeset
for help on using the changeset viewer.