How to install gpg keys from behind a firewall?

firewall gpg

I understand that keyservers are using the port 11371 but in many cases you are not allowed to connect to this port and you cannot add

There a many cases when you cannot modify the firewall configuration.

Example command that fails

 gpg --keyserver keyserver.ubuntu.com --recv-keys 0A5174AF

How do you solve this issue?


Some key servers answer to port 80 as well:

gpg --keyserver hkp://wwwkeys.de.pgp.net:80 --recv-keys 0A5174AF

And since hkp relies on http, you should be able to use it trough a web proxy too.


Something like

gpg --keyserver hkp://p80.pool.sks-keyservers.net:80 \
    --keyserver-options "timeout=40 http-proxy=$http_proxy" \
    --recv-keys B0F4253373F8F6F510D42178520A9993A1C052F8

The decisive part is http-proxy=$http_proxy, which can be replaced with http-proxy=http://corporate.proxy.test:8765 for example.

BTW: https://askubuntu.com/a/102505/519948


try this

sudo apt-key adv --keyserver-options http-proxy="http://<username>:<password>@<proxy_server_addr>:<proxy_port>" --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys <key_to_import>

Related

Mysql not starting -> [ERROR] /usr/sbin/mysqld: unknown option '--query_cache_size-128M'
Persistently rename a Linux network interface without Udev / Reboot
Why can I use auto on a private type?
NoClassDefFoundError - Eclipse and Android
Why are empty catch blocks a bad idea? [closed]
Getting All Variables In Scope
Tkinter scrollbar for frame
How to limit execution time of a function call?
javascript regex - look behind alternative?
Access to Modified Closure
Gson TypeToken with dynamic ArrayList item type
jQuery how to bind onclick event to dynamically added HTML element [duplicate]