I have a lot of email addresses. All of these are tied into just one PGP identity which makes life much simpler both for me and also people wishing to communicate with me; if you only have your PGP identity tied to one email address then if they try to send you an encrypted message to a different address (which actually happens more often than you’d think) they need to select the right identity from a list each time – very tiresome!
Adding an additional email address to your GPG identity
You can do this via Thunderbird’s Keychain Access widget ( “OpenGPG” -> “Key Management”) via the options accessed from right-clicking your own identity and selecting “Manage User IDs”.
Personally I find it simplest to manage your personal key details via the command line however. The instructions should work equally well either way. Open up a terminal window and enter:
gpg --edit-key firstname.lastname@example.org
You are now on the GPG command line. To add a mail identity simply type “adduid” and hit enter. You will then be prompted for the following:
- Real name: You probably want to enter your real name here, but you might have a pseudonym which you want to add for convenience. Don’t do this if you don’t want the pseudonym to be associated with your real name though! I actually have two PGP keys, the other for my “alternative community” pseudonym.
- Email address: The new email address that you’re adding to your key.
- Comment: I generally enter a URL or Company name here and that seems to be a convention. Most of my email identities are associated with a different organisations or Web sites.
Next check the details and if you’re happy hit “o” (okay) then <enter>.
For some reason it shows the new identity as untrusted. I don’t think this step is necessary, but I also typed “trust” and selected “ultimate” (press 5 and hit enter) just to be sure. You should only ever trust yourself ultimately by the way! Even my brother only gets “full” trust from me for example.
Adding a photo to your GPG identity
You can also add other useful identifying information to your PGP identity such as a picture of yourself. Not many systems seem to use this, but I’ve done it on mine since after all we mainly identify people via their faces.
To add a photo to your identity; enter “addphoto” on the GPG command line, then enter the filename of the image you want to use (you’ll need to enter the full path).
In this case it may well be simpler to just use Thunderbird’s widget since you get a nice file browser selection tool. Just right-click your own identity in the list, select “Add Photo” and browser to your chosen pic. Generally one clearly showing your face is a good idea; think passport photo style.
Saving changes and finishing up
To apply the changes you need to “Save and Quit” from the GPG command line. To do this simply type “save” and hit <enter>.
Note: If you have used GPG on the command line to edit your key then you’ll need to restart Thunderbird to see the changes.
Also note that you can access help at any time from the GPG command line by typing “help”+<enter>.
You’ll also want to re-upload your public keys to a key-server.