diff options
author | Tom Ryder <tom@sanctum.geek.nz> | 2020-05-19 22:27:31 +1200 |
---|---|---|
committer | Tom Ryder <tom@sanctum.geek.nz> | 2020-05-19 22:27:31 +1200 |
commit | c403fb50c2fbadf16708af3aba19824ad59b5781 (patch) | |
tree | 1e7126c8375c95c153f26186d6d78ad71190e735 /mutt/muttrc | |
parent | Depend on GnuPG for Mutt (diff) | |
download | dotfiles-c403fb50c2fbadf16708af3aba19824ad59b5781.tar.gz dotfiles-c403fb50c2fbadf16708af3aba19824ad59b5781.zip |
Move PGP config down a bit
Diffstat (limited to 'mutt/muttrc')
-rw-r--r-- | mutt/muttrc | 90 |
1 files changed, 45 insertions, 45 deletions
diff --git a/mutt/muttrc b/mutt/muttrc index bd244f8a..b18d1a94 100644 --- a/mutt/muttrc +++ b/mutt/muttrc @@ -26,51 +26,6 @@ set beep_new # unset confirmappend -# Use the GPGME library for PGP; sign replies to messages that are themselves -# signed (whether encrypted or not), and encrypt when we have a key for every -# recipient (opportunistic). -# -set crypt_use_gpgme -set crypt_opportunistic_encrypt -set crypt_replysign -set crypt_replysignencrypted - -# Use a default key for self-encrypting both sent and draft messages so that -# they're protected but legible. This defaults to the GPG_KEYID environment -# variable, so be careful to set that lest you send useless OpenPGP headers! -# My kingdom for muttrc(5) conditionals... -# -set pgp_default_key = $GPG_KEYID -set pgp_self_encrypt -set postpone_encrypt - -# Always include OpenPGP header with the selected default key, regardless of -# whether the message is protected or not: -# -# <https://datatracker.ietf.org/doc/draft-josefsson-openpgp-mailnews-header/> -# -# This RFC has expired and doesn't seem to have seen widespread adoption, but -# it seems that Thunderbird's Enigmail extension is still sending key IDs with -# it, and it doesn't do any harm. -# -my_hdr OpenPGP: id=$pgp_default_key\; \ -preference=signencrypt\; \ -url=https://keyserver.pgp.com/vkd/DownloadKey.event?keyid=0x$pgp_default_key - -# Because I (personally) never want to encrypt mail without signing it, add in -# a hook for sending or changing a message that forces a signature if it's -# encrypted but not signed. This may not suit anyone else reading. -# -send-hook '~G !~g' 'push <pgp-menu>s' -send2-hook '~G !~g' 'push <pgp-menu>s' - -# Because of the order in which opportunistic encryption is applied, we queue -# up a no-op change by opening the PGP menu and then doing nothing (pressing -# Enter), to trigger send2-hooks to run and turn signatures on if opportunistic -# encryption happens to have decided to switch encryption on. -# -send-hook '!~G !~g' 'push <pgp-menu><enter>' - # Default to a subject format for forwarded messages that's more familiar to # most mail users, unless sending mail to a list where they're more likely to # appreciate the nicer default that uses square brackets and the author email @@ -153,6 +108,51 @@ set reflow_wrap = 0 # unset wait_key +# Use the GPGME library for PGP; sign replies to messages that are themselves +# signed (whether encrypted or not), and encrypt when we have a key for every +# recipient (opportunistic). +# +set crypt_use_gpgme +set crypt_opportunistic_encrypt +set crypt_replysign +set crypt_replysignencrypted + +# Use a default key for self-encrypting both sent and draft messages so that +# they're protected but legible. This defaults to the GPG_KEYID environment +# variable, so be careful to set that lest you send useless OpenPGP headers! +# My kingdom for muttrc(5) conditionals... +# +set pgp_default_key = $GPG_KEYID +set pgp_self_encrypt +set postpone_encrypt + +# Always include OpenPGP header with the selected default key, regardless of +# whether the message is protected or not: +# +# <https://datatracker.ietf.org/doc/draft-josefsson-openpgp-mailnews-header/> +# +# This RFC has expired and doesn't seem to have seen widespread adoption, but +# it seems that Thunderbird's Enigmail extension is still sending key IDs with +# it, and it doesn't do any harm. +# +my_hdr OpenPGP: id=$pgp_default_key\; \ +preference=signencrypt\; \ +url=https://keyserver.pgp.com/vkd/DownloadKey.event?keyid=0x$pgp_default_key + +# Because I (personally) never want to encrypt mail without signing it, add in +# a hook for sending or changing a message that forces a signature if it's +# encrypted but not signed. This may not suit anyone else reading. +# +send-hook '~G !~g' 'push <pgp-menu>s' +send2-hook '~G !~g' 'push <pgp-menu>s' + +# Because of the order in which opportunistic encryption is applied, we queue +# up a no-op change by opening the PGP menu and then doing nothing (pressing +# Enter), to trigger send2-hooks to run and turn signatures on if opportunistic +# encryption happens to have decided to switch encryption on. +# +send-hook '!~G !~g' 'push <pgp-menu><enter>' + # Save message to whatever box Mutt guesses, without confirmation macro index,pager S \ '<save-message><enter>' \ |