Installing the latest GPG

From das_wiki
Jump to: navigation, search

Note: This is a careful way of installing GPG. There are simpler ways to use OpenPGP that are less secure, but may be better for you if you're not comfortable on the command line. For example, you may want to look at mailvelope for OpenPGP integration with Gmail.

That said, if you can do it this way, it is better. In particular, the package provided with your favorite GNU/Linux distro., or in MacPorts, may not be the latest. This matters, so get the latest one directly! The instructions for doing so are provided here. CURRENTLY INCOMPLETE


do this first, then we'll build

  • Create the install directory, inserting the desired parent directory for the build directory for PARENT_DIR:
 cd PARENT_DIR && mkdir gpg_build
  • Get the latest stable version of gpg here


  • verify the integrity by issuing this command. (This ensures that the file is unchanged from the source, but of course it guarantees nothing about the program itself. Trusting a source is a separate, and tricky question). Continue to check the integrity of the file only if you decide that you trust the maintainers of GPG:
 sha1sum gnupg-2.0.27.tar.bz2

(substitute the name of the file you downloaded for gnupg-2.0.27/tar.bz2 above), and checking the result against the list of checksums here. If this does not go perfectly, figure out what happened and fix it; do not just carry on.

Expand and Build

  • To expand the archive, do
 tar xjvf gnupg-2.0.27.tar.bz2