jralvarezc

# install
$ nix-env -i mullvad-vpn
# start daemon
$ sudo mullvad-daemon --disable-log-to-file
# set account number
$ mullvad account set XXXXXXXXXXXXXXX
# list possible relays
$ mullvad relay list
# set switzerland secure and independent legislation
$ mullvad relay set location ch

jralvarezc

# check if at hw level bluetooth is enabled (F10)

# Is it blocked bluetooth by the soft kill switch?
$ sudo rfkill 
ID TYPE      DEVICE                   SOFT      HARD
 0 bluetooth tpacpi_bluetooth_sw   blocked unblocked
 2 wlan      phy0                unblocked unblocked

# Turn off kill switch
$ sudo rfkill unblock 0

jralvarezc

# with identity verification
$ gpg --export user@domain.com | curl -T - https://keys.openpgp.org

jralvarezc

https://myaccount.google.com/data-and-personalization  

Remove past activity

https://myactivity.google.com/delete-activity?hl=en

jralvarezc

$ gpg encrypted.asc                  
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
gpg: encrypted with 3072-bit RSA key, ID 0x850A5A6F516C26B0, created 2019-08-18
      "Rafael Alvarez <user@domain.com>"
gpg: Signature made Sun 25 Aug 2019 03:49:44 AM -05
gpg:                using RSA key 3B6C6808FC9D75EDAE0184E73028CF59770E7A01
gpg: Can't check signature: No public key

$ gpg --receive-keys 3B6C6808FC9D75EDAE0184E73028CF59770E7A01
gpg: key 0x2F3898CEDEE958CF: 4 duplicate signatures removed

jralvarezc

$ keybase pgp list
Keybase Key ID:  01010d882fb54fd77c1d1657963de6751bf0438ea530f5fe5233579547759e1a25b70a
PGP Fingerprint: 83ca2c614e54bf1de73e83971b528e4c722dcf04
PGP Identities:


Keybase Key ID:  01017665a30d8b632b83e541537504d767a22c4ce93b0f50832f19a3e844518453930a
PGP Fingerprint: 3660bc4ab81d3472b1fff0adc8c71a9539bb323d
PGP Identities:

jralvarezc

# create master key with only certify capability

$ gpg --quick-generate-key "Rafael Alvarez <user@domain.com>" rsa4096 cert 1y                         
gpg: key CA8AF23220D60863 marked as ultimately trusted
gpg: revocation certificate stored as '/home/ralvarez/.gnupg/openpgp-revocs.d/AD07FCBA7DBE90338618549CCA8AF23220D60863.rev'
public and secret key created and signed.

Note that this key cannot be used for encryption.  You may want to use
the command "--edit-key" to generate a subkey for this purpose.
pub   rsa4096 2019-08-18 [C] [expires: 2020-08-17]

jralvarezc

$ gpg --delete-secret-key 82254050A92C5CDDD3BFF40C295C11F66455414B
gpg (GnuPG) 2.2.17; Copyright (C) 2019 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.


sec  rsa2048/295C11F66455414B 2019-08-18 Rafael Alvarez <user@domain.com>

Delete this key from the keyring? (y/N) y
This is a secret key! - really delete? (y/N) y

jralvarezc

# Check expiration dates

$ gpg --list-keys                                        
/home/ralvarez/.gnupg/pubring.kbx
---------------------------------
pub   rsa2048 2003-12-10 [SC]
      3660BC4AB81D3472B1FFF0ADC8C71A9539BB323D
uid           [ultimate] Rafael Alvarez <user@domain.com>
uid           [ultimate] Rafael Alvarez <user@domain.com>
uid           [ultimate] Rafael Alvarez <user@domain.com>

jralvarezc

$ gpg --output rev-cert-323D.asc --gen-revoke 3660BC4AB81D3472B1FFF0ADC8C71A9539BB323D

sec  rsa2048/C8C71A9539BB323D 2003-12-10 Rafael Alvarez <user@domain.com>

Create a revocation certificate for this key? (y/N) y
Please select the reason for the revocation:
  0 = No reason specified
  1 = Key has been compromised
  2 = Key is superseded
  3 = Key is no longer used