diff options
author | Tom Ryder <tom@sanctum.geek.nz> | 2019-07-13 16:43:10 +1200 |
---|---|---|
committer | Tom Ryder <tom@sanctum.geek.nz> | 2019-07-13 16:43:10 +1200 |
commit | 002551cfee260dfb6e2cfd7fd7a0c4d286c3b733 (patch) | |
tree | 3d83017fd790356c3564cb1f15ef23ec35a89db9 /gnupg | |
parent | Name my i3 workspaces (diff) | |
download | dotfiles-002551cfee260dfb6e2cfd7fd7a0c4d286c3b733.tar.gz dotfiles-002551cfee260dfb6e2cfd7fd7a0c4d286c3b733.zip |
Reduce GnuPG config considerably
Pretty sure I just got hit by this:
<https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f>
Diffstat (limited to 'gnupg')
-rw-r--r-- | gnupg/gpg.conf | 5 | ||||
-rw-r--r-- | gnupg/gpg.conf.mi5 | 48 |
2 files changed, 5 insertions, 48 deletions
diff --git a/gnupg/gpg.conf b/gnupg/gpg.conf new file mode 100644 index 00000000..1ef5e858 --- /dev/null +++ b/gnupg/gpg.conf @@ -0,0 +1,5 @@ +# Suppress the copyright message +no-greeting + +# Use the GPG agent for key management and decryption +use-agent diff --git a/gnupg/gpg.conf.mi5 b/gnupg/gpg.conf.mi5 deleted file mode 100644 index 97726d20..00000000 --- a/gnupg/gpg.conf.mi5 +++ /dev/null @@ -1,48 +0,0 @@ -# Retrieve certs automatically if possible -auto-key-locate cert pka - -# Use SHA512 as the hash when making key signatures -cert-digest-algo SHA512 - -# Specify the hash algorithms to be used for new keys as available -default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed - -# In the absence of any other recipient, encrypt messages for myself -default-recipient-self - -# Show complete dates and use proper column separation for --with-colon listing -# mode -fixed-list-mode - -# Use only fingerprints as key IDs -keyid-format <% KEYID_FORMAT %> - -# Use a pool of servers which support HKPS (encrypted key retrieval) -keyserver <% KEYSERVER %> - -# Retrieve keys automatically; check the keyserver port cert; use whichever -# server is proffered from the pool -keyserver-options auto-key-retrieve no-honor-keyserver-url - -# Include trust/validity for UIDs in listings -list-options show-uid-validity - -# Suppress the copyright message -no-greeting - -# Use SHA512 as my message digest, overriding GnuPG's efforts to use the lowest -# common denominator in hashing algorithms -personal-digest-preferences SHA512 - -# Suppress a lot of output; sometimes I add --verbose to undo this -quiet - -# Use the GPG agent for key management and decryption -use-agent - -# Include trust/validity for UIDs when verifying signatures -verify-options pka-lookups show-uid-validity - -# Assume "yes" is the answer to most questions, that is, don't keep asking me -# to confirm something I've asked to be done -yes |