Simple PGP Guide

xenxra

xenxra

V.I.P Member
V.I.P Member
EMERALD SPONSOR
Joined
Dec 2, 2023
Messages
566
Preface
you MUST include the header and footer segments containing ----begin/end public key block---- when saving keys to file or else you will encounter an error with importing (file extension doesn't matter, you could just use none)

MAKE SURE YOUR PUBLIC KEY IS SENT SEPARATE OUTSIDE THE ENCRYPTED TEXT (SAME EMAIL), YOU WILL ONLY NEED TO INCLUDE THE KEY FOR YOUR FIRST EMAIL SO THE VENDOR IS ABLE TO ENCRYPT COMMS BACK TO YOU


iOS
1) download PGPro - App Store
2) locate and save vendors pgp key to file

(i dont have an iPhone to test so these steps are assumed from app store screenshots)

3) navigate to "keychain" tab in pgpro, then tap the + button at top right and import your key file(s)
4) navigate to "encryption" tab → "select contacts" and pick vendor's key from keychain
5) type message and copy encrypted text to clipboard
6) send email to vendor with encrypted text AND your public key (i would assume you can get this in PGPro by selecting your key in keychain tab and then tapping the share button in the top right — i typically include the full text appended but you could just attach a file with your key)


Android
1) download OpenKeychain - F-Droid / Google Play
2) locate and save vendors pgp key to file
3) navigate to "keys" tab on sidebar, then tap the + button at bottom right and import key file(s)
4) navigate to "encrypt/decrypt" tab on sidebar
5) select "encrypt text", select vendors key, type message, then tap the copy icon at the top right
6) send email to vendor with encrypted text AND your public key (to locate this in openkeychain, select your own key entry from the "keys" tab and then use the copy button located on the left side of the QR code)


Windows + MacOS/Linux
1) download Kleopatra
— a) For Windows - Gpg4win (contains Kleopatra as add-on)
b) MacOS/Linux - App Store (alternatively, you could run the command sudo apt install kleopatra from terminal

2) locate and save vendors pgp key to file
3) open kleopatra, then select the "import" button on the top ribbon bar and import key file(s)
4) open a text editor (any will work), type out the message you want to send and copy it to your clipboard in clear text
5) in your taskbar, right click the kleopatra icon, navigate to "clipboard" then select "encrypt..."
6) in the encrypt window, select "add recipient...", select your vendor's key and then toggle the "openpgp" option (if it isn't done automatically)
7) send email to vendor with encrypted text AND your public key (to locate this in kleopatra, right-click your own key entry from the main window, select "details", then select "export" at the bottom and copy all the text that appears in the new pop-up window (you can remove all the lines containing "Comment: ...")


Stay safe out there! :ninja:
 
Last edited:
Thanks for writing up this guide Xenxra.

I'm new to PGP and using OpenKeychain. I have been sending messages between two burner phones.

Is it normal for decrypted messages to say "signed by an unconfirmed key" ?

It shows up on both phones when I decrypt the messages.

Anytime I add/save a PGP key it's always "unconfirmed" so I'm assuming it's normal?

I'm able to encrypt and decrypt messages successfully . It just the "unconfirmed key" that confuses me. Thanks

Edit: nvm, figured it out. I confirm fingerprint.
 
Last edited:
Legit the best thing to do for your opsec over email.

Idk why people think this is hard and don't do it, it should be standard. In fact, I would say that if you communicate with me via email, I will not respond to any non-pgp emails.
 
Def good guide thanks @xenxra

Generally it is frowned upon in the security community to use pgp on phones unless it’s a graphene etc.

I totally understand why the option is being given though. Bc people just just won’t use desktop lol. I’m not sure if I read it but remember never to use your real email address or have any identifiers to lead back to you.

-----BEGIN PGP PUBLIC KEY BLOCK-----


Comment: User-ID: WopWop <Daddy@Aol.com>

Comment: Valid from: 11/1/24 8:40 PM

Comment: Valid until: 11/1/27 12:00 PM

Comment: Type: 255-bit EdDSA (secret key available)

Comment: Usage: Signing, Encryption, Certifying User-IDs

Comment: Fingerprint: 2B4B7C439DE2F22FA698BA115CC3DD7EB0414DCF



mDMEZyV0+xYJKwYBBAHaRw8BAQdAeGcMrYBw4UiZADVavM8UhQ7eY25rImMT96U6

/E+MVxS0FldvcFdvcCA8RGFkZHlAQW9sLmNvbT6ImQQTFgoAQRYhBCtLfEOd4vIv

ppi6EVzD3X6wQU3PBQJnJXT7AhsDBQkFoyCFBQsJCAcCAiICBhUKCQgLAgQWAgMB

Ah4HAheAAAoJEFzD3X6wQU3P9LcBAPObyH4KqLLM0vFu8Nd2FAMC+UVF+FEj7+Cu

b3HfyEBBAP0XheQOTPUdbM634O/pxZWaldlp3OixpoXsVUSNsddAAbg4BGcldPsS

CisGAQQBl1UBBQEBB0B0ThQ/2Eovro9Ba09AsqZG8qHUlDD+MTy2Rib2BvqSXgMB

CAeIfgQYFgoAJhYhBCtLfEOd4vIvppi6EVzD3X6wQU3PBQJnJXT7AhsMBQkFoyCF

AAoJEFzD3X6wQU3PkacBAPal025eWPmo1hgjmMwfod35QmM1XZubVn0pVecxygSx

APsGoGWdCF7y0AlSOXd0wjV93dzooaD3zE/dRAtvDsPHDA==

=YIKT

-----END PGP PUBLIC KEY BLOCK-----

Like obv this is not my real email right? Lol

Thanks @xenxra good work
 
I hope this isnt a super dumb question but what does "in clear text" mean specifically? like see through font? or just not a jumbled up hard to read message? Im guessing that this is a dumb question seeing how no one else has asked it lol
 
I think in this context it is pretty much synonymous with 'plain text'. It just means "everyday" text that is unencrypted and without any special formatting like RTF (Rich Text Formatting).

I don't how necessary it was to word it this way because anytime text is copied to the clipboard using right-click>copy (for example on Windows), it is stored in memory as un-formatted and unencrypted WYSIWYG (What You See Is What You Get) text. ...Nonetheless, an excellent how-to by xenxra.
 
You must log in or register to reply here.
Drugbuyersguide Shoutbox
  1. LatsDoodis @ LatsDoodis: @Royboy99 You’re not yet lost. Cut them losses and do what you don’t want to do. Take the boring, shameful, nerve racking way out. It’s the only road back to balance. When you’re ready, you’ll do it. Hit me up if you want support quitting. This ain’t worth your life!
  2. R @ Royboy99: Grateful that this site exists and realizing that trying to save a few bucks today may cost me so much more in the future …
  3. R @ Royboy99: The hardest hit was losing my girl , and I still feel the tremendous heartache everyday, over a year later … knowing that I caused it all. She gave me 4 chances and I let her down everytime … I use Diaz and kpins going on year now for my panic attacks, ptsd and anxiety. With no issues and see a therapist weekly
  4. R @ Royboy99: Destroyed bonds that took me 10+ years to form , over 160k in medical billing… all in result of 6 months of RC use. Now I’m forever labeled a out of control addict that needs to be monitored… lost my girl too in result :(
  5. R @ Royboy99: Gravely underestimating the psychological impacts , I destroyed my reputation, relationships and spent a year in and out of detox and rehab
  6. R @ Royboy99: ..
  7. R @ Royboy99: Jesus fent in a addy press? So basically attempted murder? Fuck is wrong with people
  8. O @ ondyismiolip: Has anyone ever got Fent in an adderall press?
  9. LatsDoodis @ LatsDoodis: That’s funny people are mentioning the klepomanazepam phenomenon. I was actually briefly in some sort of patient data study on this, but was not recruited as I don’t experience amnesia or episodic antisocial, impulsive-behavioral disordered tendencies and out of character crime sprees. They just dent the tremendous suffering that’s underscored my life and I had a few years of true reprieve before tolerance began to return the old way of “it’s always a catastrophe” with “plus, benzo habit” lol!
  10. Realbenzeyes @ Realbenzeyes: @Bodix lol glad it isn’t just me. And yes I did unfortunately drive backwards down the front of the airport (one way). Thank the security guard looked past my error and my droopy face and kindly asked me to turn around. Lmao easily could’ve ended up in jail
  11. Gulp2788 @ Gulp2788: Freedom!!!!
  12. Gulp2788 @ Gulp2788: Happy Presidents day!!!!
  13. tiquanunderwood @ tiquanunderwood: Hope everyone had/or is still enjoying their weekend! happy presidents day
  14. L @ Layne_Cobain: Like the old joke “I’m allergic to benzos every time I take em I break out in handcuffs” heh heh
  15. Bodix @ Bodix: @Realbenzeyes, I knew a chick that would pop half a bar and rob you but off them like you wouldn’t take a stick of gum it’s because benzos especially strong doses take away the part of your brain that thinks of the consequences
  16. Realbenzeyes @ Realbenzeyes: No clue why but kpins make me steal and get shitty everytime. This is coming from a guy who wouldn’t steal a candy bar from the store. I’m way too scared to steal from stores but those fkers get me everytime. (Usually a drink, food etc) nothing major. Just dumb shit
  17. Bodix @ Bodix: @army13$ I bought 10 grams of clam in 21 and did the most stupid shit over than time I was taking atleast 5mg at a time and I remember barely remember most of it I fail in the show and broke my ribs, fell asleep nightly in my food so I started mixing it with 4c and that was not a smart move I wanted to fight everyone
  18. Bodix @ Bodix: The tv benzos are so much weaker and safer than my on and off again relapses of rcs from 21-23 years ago I would of already by now either got fired or arrested and total amnesia that doesn’t exist anymore which is probably a good thing
  19. Gulp2788 @ Gulp2788: who knows, maybe some chemical companies will open back up down the road, be patient.
  20. L @ Layne_Cobain: Will SR be back eventually or y’all think it’s dead and gone. I truly hope not. Kicking myself hard for not getting some before it disappeared taking it’s availability for granted 🤦
Back
Top