LPI Linux Certification/Securing data with encryption

Detailed Objectives edit

(LPIC-1 Version 5.0)


Weight: 4


Description: The candidate should be able to use public key techniques to secure data and communication.


Key Knowledge Areas:

  • Perform basic OpenSSH 2 client configuration and usage.
  • Understand the role of OpenSSH 2 server host keys.
  • Perform basic GnuPG configuration, usage and revocation.
  • Use GPG to encrypt, decrypt, sign and verify files.
  • Understand SSH port tunnels (including X11 tunnels).


The following is a partial list of the used files, terms and utilities:

  • ssh
  • ssh-keygen
  • ssh-agent
  • ssh-add
  • ~/.ssh/id_rsa and id_rsa.pub
  • ~/.ssh/id_dsa and id_dsa.pub
  • ~/.ssh/id_ecdsa and id_ecdsa.pub
  • ~/.ssh/id_ed25519 and id_ed25519.pub
  • /etc/ssh/ssh_host_rsa_key and ssh_host_rsa_key.pub
  • /etc/ssh/ssh_host_dsa_key and ssh_host_dsa_key.pub
  • /etc/ssh/ssh_host_ecdsa_key and ssh_host_ecdsa_key.pub
  • /etc/ssh/ssh_host_ed25519_key and ssh_host_ed25519_key.pub
  • ~/.ssh/authorized_keys
  • ssh_known_hosts
  • gpg
  • gpg-agent
  • ~/.gnupg/