![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to setup.doc CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [PGP] / pgp / doc|
Return to setup.doc CVS log | Up to [PGP] / pgp / doc |
1.1 ! root 1: Pretty Good Privacy version 2.2 ! 2: Installation Guide by Perry Metzger ! 3: ! 4: ! 5: How to Install PGP ! 6: ================== ! 7: ! 8: The first question is, what platform are you on? ! 9: ! 10: PGP 2.2 runs on several varieties of Unix, MS-DOS, VAX VMS, Ataris, ! 11: Amigas, and possibly other operating systems. Naturally, installation ! 12: instructions differ depending on your hardware. Separate instructions ! 13: are provided here for MSDOS and Unix. ! 14: ! 15: No matter what the machine you are on, though, do this... ! 16: ! 17: STEP 1: ! 18: READ THE DOCUMENTATION. At least read Volume I of the PGP User's ! 19: Guide. Cryptography software is easy to misuse, and if you don't use ! 20: it properly much of the security you could gain by using it will be ! 21: lost! You might also be unfamiliar with the concepts behind public ! 22: key cryptography; the manual explains these ideas. Even if you are ! 23: already familiar with Public Key Cryptography, it is important that ! 24: you understand the various security issues associated with using ! 25: PGP. It may not be important to read the fine print on a box of ! 26: breakfast cereal, but it may be crucial to read the label of a ! 27: prescription drug. Cryptography software is like pharmaceuticals-- ! 28: so read the manual! ! 29: ! 30: See the section below for your system's particular installation ! 31: instructions. ! 32: ! 33: If you do not have any of these systems, you will either have to port ! 34: the sources to your machine or find someone who has already done so. ! 35: ! 36: ###################################################################### ! 37: For MSDOS: ! 38: ! 39: PGP is distributed in a compressed archive format, which keeps all ! 40: the relevant files grouped together, and also saves disk space and ! 41: transmission time. ! 42: ! 43: The current version, 2.2, is archived with the ZIP utility, and the ! 44: PGP executable binary release system is in a file named PGP21.ZIP. ! 45: This contains the executable program, the user documentation, and a ! 46: few keys and signatures. There is also a second file available ! 47: containing the C and assembly source code, called PGP21SRC.ZIP; unless ! 48: you are a programmer interested in cryptography, it is probably of ! 49: little interest to you. It may or may not be available from the ! 50: source from which you get PGP21.ZIP; if not, and you want it, see the ! 51: Licensing and Distribution section of the PGP User's Guide. ! 52: ! 53: You will need PKUNZIP version 1.1 or later to uncompress and split ! 54: the PGP21.ZIP archive file into individual files. PKUNZIP is ! 55: shareware and is widely available on MSDOS machines. ! 56: ! 57: Create a directory for the PGP files. For this description, let's ! 58: use the directory C:\PGP as an example, but you should substitute ! 59: your own disk and directory name if you use something different. ! 60: Type these commands to make the new directory: ! 61: ! 62: c: ! 63: md \pgp ! 64: cd \pgp ! 65: ! 66: Uncompress the distribution file PGP21.ZIP to the directory. For ! 67: this example, we will assume the file is on floppy drive A - if not, ! 68: substitute your own file location. ! 69: ! 70: pkunzip a:pgp21 ! 71: ! 72: ! 73: Setting the Environment ! 74: ----------------------- ! 75: ! 76: Next, you can set an MSDOS "environment variable" to let PGP know ! 77: where to find its special files, in case you use it from other than ! 78: the default PGP directory. Use your favorite text editor to add the ! 79: following lines to your AUTOEXEC.BAT file (usually on your C: drive): ! 80: ! 81: SET PGPPATH=C:\PGP ! 82: SET PATH=C:\PGP;%PATH% ! 83: ! 84: Substitute your own directory name if different from "C:\PGP". ! 85: ! 86: Another environmental variable you should set in MSDOS is "TZ", which ! 87: tells MSDOS what time zone you are in, which helps PGP create GMT ! 88: timestamps for its keys and signatures. If you properly define TZ in ! 89: AUTOEXEC.BAT, then MSDOS gives you good GMT timestamps, and will ! 90: handle daylight savings time adjustments for you. Here are some ! 91: sample lines to insert into AUTOEXEC.BAT, depending on your time ! 92: zone: ! 93: ! 94: For Los Angeles: SET TZ=PST8PDT ! 95: For Denver: SET TZ=MST7MDT ! 96: For Arizona: SET TZ=MST7 ! 97: (Arizona never uses daylight savings time) ! 98: For Chicago: SET TZ=CST6CDT ! 99: For New York: SET TZ=EST5EDT ! 100: For London: SET TZ=GMT0BST ! 101: For Amsterdam: SET TZ=MET-1DST ! 102: For Moscow: SET TZ=MSK-3MSD ! 103: For Aukland: SET TZ=NZT-13 ! 104: ! 105: Now reboot your system to run AUTOEXEC.BAT, which will set up ! 106: PGPPATH and TZ for you. ! 107: ! 108: ! 109: ! 110: Generating Your First Key ! 111: ------------------------- ! 112: ! 113: One of the first things you will want to do to really use PGP (other ! 114: than to test itself) is to generate your own key. This is described ! 115: in more detail in the "RSA Key Generation" section of PGP User's ! 116: Guide. Remember that your key becomes something like your written ! 117: signature or your bank card code number or even a house key - keep it ! 118: secret and keep it secure! Use a long, unguessable pass phrase and ! 119: remember it. Right after you generate a key, put it on your key ! 120: rings and copy your secret keyring (SECRING.PGP) to a blank floppy ! 121: and write protect the floppy. ! 122: ! 123: After you generate your own key pair, you can add a few more public ! 124: keys to your key ring. A collection of sample public keys is ! 125: provided with the release in the file KEYS.ASC. To add them to your ! 126: public key ring, see the PGP User's Guide, in the section on adding ! 127: keys to your key ring. ! 128: ! 129: ! 130: ###################################################################### ! 131: For UNIX: ! 132: ! 133: You likely will have to compile PGP for your system; to do this, first ! 134: make sure the unpacked files are in the correct unix textfile format ! 135: (the files in pgp21src.zip are in MSDOS CRLF format, so for unix you ! 136: must unpack with "unzip -a"). Then copy the file "makefile.unx" in the ! 137: distribution to "Makefile". ! 138: ! 139: If you don't have an ANSI C compiler you will need the unproto package ! 140: written by Wietse Venema. unproto was posted on comp.sources.misc and ! 141: can be obtained from the various sites that archive this newsgroup ! 142: (volume 23: v23i012 and v23i013) or ftp.win.tue.nl file: ! 143: /pub/programming/unproto4.shar.Z Read the file README in the unproto ! 144: distribution for instructions on how to use unproto. The unix makefile ! 145: for pgp (makefile.unx) contains a few targets for compliling with ! 146: unproto, these assume you have unpacked unproto in a subdirectory ! 147: "unproto" in the pgp "src" directory. ! 148: ! 149: ! 150: Then... ! 151: ! 152: type: ! 153: "make sungcc" for Sun with GNU gcc ! 154: "make suncc" for Sun with cc and unproto ! 155: "make sysv_386" for SVR4 386 with asm primitives ! 156: "make x286" for XENIX/286 with asm primitives and unproto ! 157: "make ultrix" for DEC 4.2BSD Ultrix with gcc ! 158: "make rs6000" for RS6000 AIX ! 159: ! 160: There are more targets in makefile.unx. If your system doesn't have ! 161: a target in makefile.unx you will have to edit the makefile, make ! 162: sure you compile for the correct byte order for your system: define ! 163: HIGHFIRST if your system is big-endian (eg. Motorola 68030). ! 164: There are also some platform-specific parameters in the include file ! 165: "platform.h". Some platforms may have to modify this file. ! 166: ! 167: If all goes well, you will end up with an executable file called "pgp". ! 168: ! 169: Before you install pgp, run these tests: ! 170: (do not create your real public key yet, this is just for testing pgp) ! 171: ! 172: - create a public/secret key pair (enter "test" as userid/password): ! 173: pgp -kg ! 174: ! 175: - add the sample keys from the file "keys.asc" to the public keyring: ! 176: pgp -ka keys.asc ! 177: pgp will ask if you want to sign the keys you are adding, answer yes ! 178: for at least one key. ! 179: ! 180: - do a keyring check: ! 181: pgp -kc ! 182: ! 183: - encrypt pgpdoc1.txt: ! 184: pgp -e pgpdoc1.txt test -o testfile.pgp ! 185: ! 186: - decrypt this file: ! 187: pgp testfile.pgp ! 188: ! 189: this should produce the file "testfile" compare this file with pgpdoc1.txt ! 190: ! 191: If everything went well, install pgp in a bin directory. ! 192: ! 193: Place the documentation, pgpdoc1.txt and pgpdoc2.txt somewhere where ! 194: you can reasonably read it; since it's for you, not the software, the ! 195: location doesn't really matter. ! 196: ! 197: Place the man page (pgp.1) in an appropriate spot. If you don't know ! 198: anything about how man pages work, you can make the man page look ! 199: human readable yourself by typing "nroff -man pgp.1 >pgp.man" and ! 200: reading "pgp.man". ! 201: ! 202: Create a subdirectory somewhere in your home directory hierarchy to ! 203: hold your public and private key rings and anything else pgp might ! 204: need (like the language.txt file). You must set the environment ! 205: variable "PGPPATH" to point to this place before you use the system. ! 206: Copy the files "language.txt", "config.txt", and the ".hlp" files from ! 207: the distribution into this subdirectory. ! 208: ! 209: > IMPORTANT: This directory cannot be shared! It will contain your < ! 210: > personal private keys! < ! 211: ! 212: >> IMPORTANT: Please read the sections in the man page and manual << ! 213: >> about vulnerabilities before even THINKING about using this << ! 214: >> software on a multi-user machine!!!! << ! 215: ! 216: Now, if you haven't done so yet, GO READ THE MANUAL. ! 217: ! 218: ! 219: ###################################################################### ! 220: For VMS: ! 221: ! 222: Read the file readme.vms in the vms subdirectory ! 223: ! 224: ###################################################################### ! 225: For Amiga: ! 226: ! 227: [This space intentionally left blank] ! 228: ! 229: ###################################################################### ! 230: For Atari: ! 231: ! 232: [This space intentionally left blank] ! 233: ! 234: ######################################################################
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.