Question 1

How do I encrypt a file with a passphrase using age?

Accepted Answer

Use the -p flag: 'age -p file.txt > file.txt.age'. age will prompt for a passphrase or auto-generate a secure one. Decrypt with 'age -d file.txt.age' and enter the passphrase.

Question 2

age vs GPG: which is better for file encryption?

Accepted Answer

age is simpler and more modern with explicit keys and post-quantum support, ideal for automated scripts. GPG is more feature-rich with PGP compatibility, better for legacy systems or signing.

Question 3

Can age decrypt PGP encrypted files?

Accepted Answer

No, age uses its own format and does not support PGP decryption. You would need to use GPG or convert files first, as age focuses on its own secure format.

Question 4

How to use age with YubiKey hardware tokens?

Accepted Answer

Install the age-plugin-yubikey plugin and ensure it's in PATH. Then, you can encrypt and decrypt using YubiKey via the plugin, though note that SSH keys on YubiKeys can't decrypt files directly.

Question 5

What is the performance overhead of age's post-quantum encryption?

Accepted Answer

Post-quantum encryption adds computational cost and larger key sizes, but age implements it efficiently. For typical files, the overhead is minimal, though key handling is more verbose.

Question 6

How to encrypt to multiple GitHub users with age?

Accepted Answer

Fetch their SSH keys with curl (e.g., 'curl https://github.com/username.keys') and pipe to age -R -: 'curl ... | age -R - file.txt > file.txt.age'. All listed keys can decrypt.

age

What is age?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions