2
I downloaded my private key block from keybase.io (into file keybase.ppk). It starts with:
-----BEGIN PGP PRIVATE KEY BLOCK-----
Version: Keybase OpenPGP v2.0.49
I would now like to create a ssh key pair so I can put a public key on a remote server and use the private key to log into it. How do I do it on Linux?
I tried various methods I found on the net and all I learned is that my understanding of applications and standards in contemporary cryptography is very limited :-/
1
There is barely no tool support for this, as the use of it is very limited. You cannot simply use "plain" RSA keys as OpenPGP keys, nor are OpenPGP and X.509 (for example for S/MIME) interchangeable: Both have trust management as one of their most important features. If you want to use OpenPGP keys for SSH, have a look at monkeysphere, otherwise I'd rather generate a new key pair for SSH instead of reusing OpenPGP keys: there is no real gain, but you additionally expose the keys through the other protocol to possible attacks.
– Jens Erat – 2015-12-13T19:49:45.577It's not that I want to use OpenPGP keys for SSH, I want to use keybase.io for SSH, and keybase.io has support only for OpenPGP keys. I still don't quite understand why. I did read this, but all I understood was that people who know much more than me about crypto do not agree about the issue.
– dijxtra – 2015-12-14T07:47:53.7831Just wanted to comment that the --edit-key should be followed by 'passwd' and then 'quit'. – Alex Leith – 2016-02-10T23:02:13.110
1To expand on the above comment and the first step in general, type
gpg --edit-key D937A057
and then typepasswd
. You'll be asked for your existing passphrase. If you downloaded the key from keybase.io, this is your keybase password. Then it'll ask you for your new password and confirmation. Just enter a blank value (hit Enter twice). And then confirm you want to remove the password when it prompts you. Finally typequit
to exist the gpg shell and confirm you want to save changes – user2490003 – 2018-06-05T22:06:08.707