Instructions for DOS/Windows users

Note: this assumes you have a grasp of DOS basics, like creating directories and moving files. Unfortunately, PGP is not a Windows program. Some programmers have written Windows "front-ends" that cover up the ugly DOS interface, but these can also create security hazards. For that reason, we recommend that you follow these instructions exactly.

    Installing PGP

  1. If you are in Windows, exit to DOS.

  2. Create a new directory called PGP26:

    c:\>mkdir pgp26

  3. and then move pgp262.zip into it.

    This example assumes that pgp262.zip is in the directory c:\.

    c:\>move pgp262.zip pgp26\pgp262.zip

  4. If pgp262.zip is in a directory other than c:\, you'll need to type a slightly different command. For example, if pgp262.zip were in the directory called temp, you would do this:

    c:\>move c:\temp\pgp262.zip c:\pgp26\pgp262.zip

    Just replace "temp" with the name of the directory that holds pgp262.zip.

  5. pgp262.zip should now be in its new home. Next, change directories:

    c:\>cd pgp26

  6. Now, "unzip" pgp262.zip:

    c:\pgp26>pkunzip pgp262.zip

    If you get a series of messages involving percentages and the word "inflating", you're lucky; everything is working properly. Skip ahead to step 8.

  7. If, on the other hand, you get a message like this:

    bad command or filename

    then you need a program called PKUnzip. Just go to the How to use PKUnzip page to download the program. You'll find easy-to-follow instructions there. Follow them, and then try step 5 again.

  8. If you got a message telling you that your version of PKUnzip was too old, you should also go to the How to use PKUnzip page. Follow the instructions you find there. This will put an up-to-date version of PKUnzip on your computer. Try step 5 again.

  9. pgp262.zip is an "archive" -- a compressed package that actually contains several smaller files. When you unzipped it in step 5, you pulled those files out. They should now be inside the pgp26 directory. Have a look at them:

    c:\pgp26>dir

    There should be four files: pgp262i.asc, setup.doc, pgp262i.zip, plus the original pgp262.zip.

  10. Now, unzip pgp262i.zip:

    c:\pgp26>pkunzip pgp2621.zip

    Once again, your screen will fill up with messages about "inflating". You are nearly finished installing PGP.

  11. The final steps tell your computer where PGP lives on your hard drive. With your favourite word processor, open up a file called autoexec.bat. It should be in the c:\ directory.

    Your screen will fill up with cryptic-looking computerspeak, but don't be intimidated. Just insert the following two lines somewhere in the document:

    SET PGPPATH=C:\PGP26
    SET PATH=C:\PGP26;%PATH%

  12. Save autoexec.bat (making sure that you save it as a text file), exit from the word processor, and restart your computer.

  13. Back at the DOS prompt, inside your pgp directory, generate a set of keys for yourself:

    c:\pgp26>pgp -kg

    Your computer will ask you to choose a key size. Choose 1024 bits, and then follow the on-screen instructions. When your computer asks you for a pass phrase, give it a string of words that you will remember, but that no one else will be able to guess.

  14. Move the fifth estate's public key (fifthkey.txt) into your pgp directory:
    This example assumes that fifthkey.txt was originally in a directory called download. If that isn't correct, just replace "download" with the name of the appropriate directory.

    c:\pgp26>move c:\download\fifthkey.txt c:\pgp\fifthkey.txt

  15. Finally, add the fifth estate's public key to your public keyring:

    c:\pgp26>pgp -ka fifthkey.txt

    You are now ready to use PGP to encrypt your message.

    Using PGP

  16. pgpdoc1.txt and pgpdoc2.txt make up the user's manual. Please read them; if you are at all serious about keeping your message secure, you owe it to yourself to learn to use PGP -- and cryptography -- properly.

  17. That said, here's how to get started quickly. Save your message as a plain text file called "plain.txt". Most word processors will give you this option.

  18. Next, move that file into your pgp directory:
    This example assumes the file was originally in a directory called wp51. If that isn't correct, just replace wp51 with the name of the appropriate directory.

    c:\pgp26>move c:\wp51\plain.txt c:\pgp\plain.txt

  19. Now, encrypt your message:

    c:\pgp26>pgp -esaw plain.txt fifth

    This will create a file called plain.asc. This is the secure, encrypted version of your original message. This will also wipe out the original plain.txt. If you don't want to do this, leave the "w" out of the encryption command:

    c:\pgp26>pgp -esa plain.txt fifth

    If you choose to leave plain.txt intact, remember that someone with access to your computer might be able to read your message, even if you erase plain.txt later.

  20. Finally, send your email to the fifth estate at fifth@toronto.cbc.ca. Use "see attached" as the subject, leave the body blank, and follow the instructions in your email program to send plain.asc as an "attachment".

  21. You're done. No one will be able to read your tip except senior staff of the fifth estate.