![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to setup.doc CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [PGP] / pgp|
Return to setup.doc CVS log | Up to [PGP] / pgp |
1.1 root 1: Pretty Good Privacy version 2.1
2: Installation Guide by Perry Metzger
3:
4:
5: How to Install PGP
6: ==================
7:
8: The first question is, what platform are you on?
9:
10: PGP 2.1 runs on several varieties of Unix, MS-DOS, VAX VMS, Ataris,
11: Amigas, and possibly other operating systems. Naturally, installation
12: instructions differ depending on your hardware. Separate instructions
13: are provided here for MSDOS and Unix.
14:
15: No matter what the machine you are on, though, do this...
16:
17: STEP 1:
18: READ THE DOCUMENTATION. At least read Volume I of the PGP User's
19: Guide. Cryptography software is easy to misuse, and if you don't use
20: it properly much of the security you could gain by using it will be
21: lost! You might also be unfamiliar with the concepts behind public
22: key cryptography; the manual explains these ideas. Even if you are
23: already familiar with Public Key Cryptography, it is important that
24: you understand the various security issues associated with using
25: PGP. It may not be important to read the fine print on a box of
26: breakfast cereal, but it may be crucial to read the label of a
27: prescription drug. Cryptography software is like pharmaceuticals--
28: so read the manual!
29:
30: See the section below for your system's particular installation
31: instructions.
32:
33: If you do not have any of these systems, you will either have to port
34: the sources to your machine or find someone who has already done so.
35:
36: ######################################################################
37: For MSDOS:
38:
39: PGP is distributed in a compressed archive format, which keeps all
40: the relevant files grouped together, and also saves disk space and
41: transmission time.
42:
43: The current version, 2.1, is archived with the PKZIP utility, and the
44: PGP executable binary release system is in a file named PGP21.ZIP.
45: This contains the executable program, the user documentation, and a
46: few keys and signatures. There is also a second file available
47: containing the C and assembly source code, called PGP21SRC.ZIP; unless
48: you are a programmer interested in cryptography, it is probably of
49: little interest to you. It may or may not be available from the
50: source from which you get PGP21.ZIP; if not, and you want it, see the
51: Licensing and Distribution section of the PGP User's Guide.
52:
53: You will need PKUNZIP version 1.1 or later to uncompress and split
54: the PGP21.ZIP archive file into individual files. PKUNZIP is
55: shareware and is widely available on MSDOS machines.
56:
57: Create a directory for the PGP files. For this description, let's
58: use the directory C:\PGP as an example, but you should substitute
59: your own disk and directory name if you use something different.
60: Type these commands to make the new directory:
61:
62: c:
63: md \pgp
64: cd \pgp
65:
66: Uncompress the distribution file PGP21.ZIP to the directory. For
67: this example, we will assume the file is on floppy drive A - if not,
68: substitute your own file location.
69:
70: pkunzip a:pgp21
71:
72:
73: Setting the Environment
74: -----------------------
75:
76: Next, you can set an MSDOS "environment variable" to let PGP know
77: where to find its special files, in case you use it from other than
78: the default PGP directory. Use your favorite text editor to add the
79: following lines to your AUTOEXEC.BAT file (usually on your C: drive):
80:
81: SET PGPPATH=C:\PGP
82: SET PATH=C:\PGP;%PATH%
83:
84: Substitute your own directory name if different from "C:\PGP".
85:
86: Another environmental variable you should set in MSDOS is "TZ", which
87: tells MSDOS what time zone you are in, which helps PGP create GMT
88: timestamps for its keys and signatures. If you properly define TZ in
89: AUTOEXEC.BAT, then MSDOS gives you good GMT timestamps, and will
90: handle daylight savings time adjustments for you. Here are some
91: sample lines to insert into AUTOEXEC.BAT, depending on your time
92: zone:
93:
94: For Los Angeles: SET TZ=PST8PDT
95: For Denver: SET TZ=MST7MDT
96: For Arizona: SET TZ=MST7
97: (Arizona never uses daylight savings time)
98: For Chicago: SET TZ=CST6CDT
99: For New York: SET TZ=EST5EDT
100: For London: SET TZ=GMT0BST
101: For Amsterdam: SET TZ=MET-1DST
102: For Moscow: SET TZ=MSK-3MSD
103: For Aukland: SET TZ=NZT-13
104:
105: Now reboot your system to run AUTOEXEC.BAT, which will set up
106: PGPPATH and TZ for you.
107:
108:
109:
110: Generating Your First Key
111: -------------------------
112:
113: One of the first things you will want to do to really use PGP (other
114: than to test itself) is to generate your own key. This is described
115: in more detail in the "RSA Key Generation" section of PGP User's
116: Guide. Remember that your key becomes something like your written
117: signature or your bank card code number or even a house key - keep it
118: secret and keep it secure! Use a good, unguessable pass phrase and
119: remember it. Right after you generate a key, put it on your key
120: rings and copy your secret keyring (SECRING.PGP) to a blank floppy
121: and write protect the floppy.
122:
123: After you generate your own key pair, you can add a few more public
124: keys to your key ring. A collection of sample public keys is
125: provided with the release in the file KEYS.ASC. To add them to your
126: public key ring, see the PGP User's Guide, in the section on adding
127: keys to your key ring.
128:
129:
130: ######################################################################
131: For UNIX:
132:
133: You likely will have to compile PGP for your system; to do this, first
134: make sure the unpacked files are in the correct unix textfile format
135: (the files in pgp21src.zip are in MSDOS CRLF format, so for unix you
136: must unpack with "unzip -a"). Then copy the file "makefile.unx" in the
137: distribution to "Makefile".
138:
139: If you don't have an ANSI C compiler you will need the unproto package
140: written by Wietse Venema. unproto was posted on comp.sources.misc and
141: can be obtained from the various sites that archive this newsgroup
142: (volume 23: v23i012 and v23i013) or ftp.win.tue.nl file:
143: /pub/programming/unproto4.shar.Z Read the file README in the unproto
144: distribution for instructions on how to use unproto. The unix makefile
145: for pgp (makefile.unx) contains a few targets for compliling with
146: unproto, these assume you have unpacked unproto in a subdirectory
147: "unproto" in the pgp "src" directory.
148:
149:
150: Then...
151:
152: type:
153: "make sungcc" for Sun with GNU gcc
154: "make suncc" for Sun with cc and unproto
155: "make sysv_386" for SVR4 386 with asm primitives
156: "make x286" for XENIX/286 with asm primitives and unproto
157: "make ultrix" for DEC 4.2BSD Ultrix with gcc
158: "make rs6000" for RS6000 AIX
159:
160: There are more targets in makefile.unx. If your system doesn't have
161: a target in makefile.unx you will have to edit the makefile, make
162: sure you compile for the correct byte order for your system: define
163: HIGHFIRST if your system is big-endian (eg. Motorola 68030).
164: There are also some platform-specific parameters in the include file
165: "platform.h". Some platforms may have to modify this file.
166:
167: If all goes well, you will end up with an executable file called "pgp".
168:
169: Before you install pgp, run these tests:
170: (do not create your real public key yet, this is just for testing pgp)
171:
172: - create a public/secret key pair (enter "test" as userid/password):
173: pgp -kg
174:
175: - add the sample keys from the file "keys.asc" to the public keyring:
176: pgp -ka keys.asc
177: pgp will ask if you want to sign the keys you are adding, answer yes
178: for at least one key.
179:
180: - do a keyring check:
181: pgp -kc
182:
183: - encrypt pgpdoc1.txt:
184: pgp -e pgpdoc1.txt test -o testfile.pgp
185:
186: - decrypt this file:
187: pgp testfile.pgp
188:
189: this should produce the file "testfile" compare this file with pgpdoc1.txt
190:
191: If everything went well, install pgp in a bin directory.
192:
193: Place the documentation, pgpdoc1.txt and pgpdoc2.txt somewhere where
194: you can reasonably read it; since it's for you, not the software, the
195: location doesn't really matter.
196:
197: Place the man page (pgp.1) in an appropriate spot. If you don't know
198: anything about how man pages work, you can make the man page look
199: human readable yourself by typing "nroff -man pgp.1 >pgp.man" and
200: reading "pgp.man".
201:
202: Create a subdirectory somewhere in your home directory hierarchy to
203: hold your public and private key rings and anything else pgp might
204: need (like the language.txt file). You must set the environment
205: variable "PGPPATH" to point to this place before you use the system.
206: Copy the files "language.txt", "config.txt", and the ".hlp" files from
207: the distribution into this subdirectory.
208:
209: IMPORTANT: THIS DIRECTORY CANNOT BE SHARED! IT WILL CONTAIN YOUR
210: PERSONAL PRIVATE KEYS!
211:
212: IMPORTANT: PLEASE READ THE SECTIONS IN THE MAN PAGE AND MANUAL ABOUT
213: VULNERABILITIES BEFORE EVEN THINKING ABOUT USING THIS SOFTWARE ON A
214: MULTI-USER MACHINE!!!!
215:
216: Now, if you haven't done so yet, GO READ THE MANUAL.
217:
218:
219: ######################################################################
220: For VMS:
221:
222: Read the file readme.vms in the vms subdirectory
223:
224: ######################################################################
225: For Amiga:
226:
227: [This space intentionally left blank]
228:
229: ######################################################################
230: For Atari:
231:
232: [This space intentionally left blank]
233: ######################################################################
234:
235:
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.