Gpg

From Bitpost wiki

Create strong key

We want an elliptical curve key. It's baked in! But hidden. 

gpg --expert --full-generate-key
 Key kind: (9) ECC and ECC
 Elliptical curve: (1) Curve 25519
 Don't expire (0)
 Real name: Michael Behrns-Miller
 email: m@bitpost.com
 Passphrase: ****

PIN entry in emacs

Details are here.

PIN entry over ssh

You can in theory decrypt a file over ssh without writing it to disk: 

ssh prod-cfg-1 gpg -d my_secrets.gpg

But default PIN entry over tty is totally fucking broken. Try: 

emacs .gpg
Retrieved from "https://bitpost.com/w/index.php?title=Gpg&oldid=6180"