Git
Signing commits using GPG in Git
Git is cryptographically secure, but it’s not foolproof. If you take work from others on the internet and want to verify that commits are actually from a trusted source, Git can sign and verify work with GPG. Generate a GPG Key To sign anything, you first need GPG installed and a personal key. Check whether you already have one: gpg --list-keys /home/hzxie/.gnupg/pubring.gpg ------------------------------ pub 4096R/3DBF9592 2016-02-15 uid Haozhe Xie (GPG key for GitHub) <noreply@haozhexie.com> sub 4096R/BFEB9969 2016-02-15 If the list is empty, generate a key. On GPG 2.1 and later, --full-generate-key lets you choose the algorithm and a 4096-bit RSA key, which GitHub recommends:
How to Setup and Use Github in Ubuntu
If you are or want to be an open-source developer, you must try GitHub. It is a new hosted Git repository service that’s being called a “social network” for programmers. It is basically a distributed version control system designed to handle everything from small to very large projects with speed and efficiency. Setup SSH key Generate SSH Key Suppose you have created your account at GitHub and now want to work with it from your terminal.