Encrypted file transmission in Ubuntu

With the popularization of the Internet, many branches in various regions often need to share or transmit some important data or files over the Internet. In today's increasingly prominent network security issues, how can we ensure the security of Ubuntu system data during transmission? This article explains how to encrypt and transmit files in Ubuntu. This article describes how to use GNOME to integrate the desktop environment based on ubuntuyuntop9.10 (i386. And set two computers with Ubuntu9.10 desktop edition.

With the popularization of the Internet, many branches in various regions often need to share or transmit some important data or files over the Internet. In today's increasingly prominent network security issues, how can we ensure the security of Ubuntu system data during transmission? This article explains how to encrypt and transmit files in Ubuntu.

This article describes how to use GNOME to integrate the Desktop environment based on Ubuntu Desktop 9.10 (i386. And set two computers Host1 and Host2 with Ubuntu 9.10 desktop edition installed with the OpenSSH software package installed with the same user account (for ease of description, the user name and password are the same ).

Preparations: Install Seahorse key manager plug-in

By default, Ubuntu 9.10 GNOME integrated desktop environment software does not have its own Seahorse key manager plug-in (seahorse-plugins). Therefore, in the Nautilus (parrot) file browser, after you select a file and right-click it, the "encryption" and "sign" options are not displayed in the shortcut menu, therefore, the file cannot be encrypted or signed through a graphical interface (the plug-in is integrated in the Nautilus file browser.

To this end, you can manually install the plug-in by using the "apt-get" command or the "New Software Package Manager. The command line is used for installation. Choose "Application> attachment> terminal" from the menu, open the GNOME terminal window, and enter the following command: "sudo apt-get install seahorse-plugins ", after the command is executed, you can download and install the "seahorse-plugins" software package. After the installation is complete, log out of the current system and log on again. You can see encryption and signing in the shortcut menu described above (1 ).

To encrypt or sign a file, you must first create a key for the corresponding user. The created key is a pair of public and private keys. The Public Key is usually published and encrypted by other users. After receiving an encrypted file from another user, use the private key to decrypt it.

Step 1. Create a local user key in Host1

Click "Application> attachment> password and encryption key" in the menu to run the Seahorse key management program. In the displayed "password and encryption key" window, click "File> New" to display the "new" Key dialog box. Because the file is to be encrypted, select "PGP key" as the key type and click "continue" to go to the "Create PGP key" dialog box. When creating a key, you must specify the user's personal information, such as the user name, email, and other information, as well as the specified encryption type and key confidentiality intensity (2 ). After entering this information, click "CREATE" and enter the key protection password to create the User Key.

Step 2. Distribute the public key to the Host2 user

First, use Seahorse key manager to export the created public key. Click "File> export" in the "Key and encryption password" window, export the public key, and click "save". Then, the current user (testuser) generate the public key file "testuser. asc ". Next, we will transfer the public key file to the Host2 host (Here we use the "scp" command as an example ).

Open a GNOME terminal window on Host1 and enter the command "scp testuser. Asc testuser @ Host2 :~ /. ", Enter" y "to add host Host2 to the trusted host list, and then enter the user" testuser "password on Host2, after the request is passed, the "testuser. copy the asc file to the testuser directory (/home/testuser) of the Host2 host ). After receiving the key file, the user on Host2 clicks "file → import" in the "Key and encrypted password" window in the Seahorse key manager ", find the file "testuser. asc "and open it to complete the import.