pgp / gpg

I have a load of files encrypted with pgp (2.6.2i, since you ask). But the machine at BAS this runs off is soon to be turned off, so it seems I need to upgrade to gpg instead. So... in a break from climate, can I ask the security gurus out there (are any of them reading this?)...

Can I read pgp in gpg? (I tried it a year or so ago, and failed on importing my old keys into gpg: just tried again: died on some message about missing self-signature)

Otherwise I have to decrypt 200-odd files and re-encrypt them as gpg. Not too tedious. Except I have a few others out on the web in odd locations I may struggle to find...

[Aha: progress: DanR says (see comment 1; thanks) "use --allow-non-selfsigned-uid". This works to import my key, hurrah. Now I have a problem that my old pgp files use IDEA (see http://www.gnupg.org/(en)/documentation/faqs.html#q3.3 ) so I have to get our IT folk to upgrade gpg to use this...]

Tags

More like this

As you've probably heard, the US customs service has, recently, asserted the right to confiscate any and all computers and/or digital storage carried by anyone crossing the US border. They further assert the right to demand all passwords, encryption keys, etc., from the owners. They even further…
I've been trying for a couple of weeks to put together a couple of interesting posts on the cryptographic modes of operation for confidentiality and integrity, and I just can't do it. I'm finding it boring to write about, and if it bores me to write it, I know there's no way that it's going to be…
Technorati Tags: cryptography, public-key, encryption, RSA, asymmetric encryption The most successful public key cryptosystem in use today is RSA - named for its inventors Rivest, Shamir, and Adleman. I first learned about RSA in grad school from one of my professors, Errol Lloyd, who was one of…
Senator rel="tag">Dick Durbin has started a project using an innovative method of writing legislation: href="http://www.openleft.com/showDiary.do?diaryId=318">What should be America's national broadband strategy? by: Dick Durbin Sun Jul 22, 2007 at 13:06:58 PM EDT (This diary will…

See http://www.gnupg.org/gph/en/pgp2x.html under "Importing PGP 2.x keys". If pgp is still available, you can self-sign your key with it before trying to import. Otherwise, use '--allow-non-selfsigned-uid' when you import the keys.

If you are using pgp/gpg to sign files that are distributed to others, you should self-sign your public key after importing; if you are only ever using it to encrypt your private files (i.e. you will never give anyone your public key), then having your public-key self-signed with your private key isn't necessary, so just '--allow-non-selfsigned-uid' on import.