diff options
author | Tom Ryder <tom@sanctum.geek.nz> | 2017-12-29 13:52:30 +1300 |
---|---|---|
committer | Tom Ryder <tom@sanctum.geek.nz> | 2017-12-29 13:52:30 +1300 |
commit | 78b3e38915bbca43c0ff66d1d20c87e08ad0a8cb (patch) | |
tree | 2f0890cf7a0566da9d43bbfe01ad1baf9a2f49f2 | |
parent | Merge branch 'feature/gpg-no-batch' into develop (diff) | |
download | dotfiles-78b3e38915bbca43c0ff66d1d20c87e08ad0a8cb.tar.gz dotfiles-78b3e38915bbca43c0ff66d1d20c87e08ad0a8cb.zip |
Use only fingerprints for GnuPG keys
The manual page for gpg(1) says this is the safest way to do it.
-rw-r--r-- | Makefile | 2 | ||||
-rw-r--r-- | gnupg/gpg.conf.mi5 | 4 |
2 files changed, 3 insertions, 3 deletions
@@ -92,7 +92,7 @@ NAME = 'Tom Ryder' EMAIL = tom@sanctum.geek.nz -KEY = 0xC14286EA77BB8872 +KEY = FA09C06E1B670CD0B2F5DE60C14286EA77BB8872 SENDMAIL = msmtp BINS = bin/ap \ diff --git a/gnupg/gpg.conf.mi5 b/gnupg/gpg.conf.mi5 index 74363441..c3f80b7e 100644 --- a/gnupg/gpg.conf.mi5 +++ b/gnupg/gpg.conf.mi5 @@ -13,8 +13,8 @@ default-recipient-self # Show complete dates and use proper column separation for --with-colon listing mode fixed-list-mode -# Use 16-character key IDs as the default 8-character key IDs can be forged -keyid-format 0xlong +# Use only fingerprints as key IDs +keyid-format none # Use a pool of servers which support HKPS (encrypted key retrieval) keyserver <% KEYSERVER %> |