Commit 79e5a528 authored by Boris Budini's avatar Boris Budini

Import Security Practices

parent 46c49190
Pipeline #300 passed with stages
in 40 seconds
......@@ -36,10 +36,11 @@ Pamja
.. toctree::
:maxdepth: 1
../shared/securitypractices
account_access_and_setup
data_and_content/adding_new_content
admin_menu
appearance
data_and_content/index
people/index
structure
\ No newline at end of file
structure
---
layout: markdown_page
title: PGP Process
---
## On this page
{:.no_toc}
- TOC
{:toc}
## Install GPG Keychain and import PGP Keypair
On a Mac, download and install the [GPG Keychain](https://gpgtools.org) application. Download the keypair file from the Support vault. It's attached to the 'security@gitlab.com PGP Keypair' item. Open the GPG Keychain application and import the keypair file. It will ask for a password. Use the password saved on the vault item.
Now you will be able to encrypt, decrypt, and share the public key with others.
## Share the Public Key
Users that wish to report a possible security issue may request our PGP public key by sending an email to 'security@gitlab.com'. Right-click on the key in the GPG Keychain application and click 'Export'. Ensure the dialog box does not have 'Include secret key in exported file' checked. Save the exported file and send it to the requestor.
![GPG Keychain Export](/images/support/pgp/gpg_keychain_export.png)
## Decrypt Text and Files
If the encrypted data comes to the security email as text, decrypting is very easy. Copy the entire block of encrypted text, right-click, go to 'Services', then 'OpenPGP: Decrypt Selection to New Window'. After a few seconds a new window will appear with the decrypted text.
![Decrypt text](/images/support/pgp/decrypt_text.png)
If the encrypted data comes as an attachment, start by downloading the file to your workstation. Navigate to the file in your Finder. Right-click the file, go to 'Services', and choose 'OpenPGP: Decrypt File'. The decrypted file will be placed in the same directory as the encrypted file. It may have a different name, though.
![Decrypt file](/images/support/pgp/decrypt_file.png)
This diff is collapsed.
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment