GPG permissions
This commit is contained in:
parent
4ce7a414e4
commit
7fecce5fe2
6 changed files with 62 additions and 5 deletions
|
@ -308,11 +308,6 @@
|
||||||
type = "file"
|
type = "file"
|
||||||
url = "https://curl.se/ca/cacert.pem"
|
url = "https://curl.se/ca/cacert.pem"
|
||||||
|
|
||||||
### GPG
|
|
||||||
[".gnupg/gpg.conf"]
|
|
||||||
type = "file"
|
|
||||||
url = "https://raw.githubusercontent.com/drduh/config/master/gpg.conf"
|
|
||||||
|
|
||||||
### Vagrant
|
### Vagrant
|
||||||
[".ssh/authorized_keys.vagrant"]
|
[".ssh/authorized_keys.vagrant"]
|
||||||
type = "file"
|
type = "file"
|
||||||
|
|
62
home/private_dot_gnupg/private_gpg.conf
Normal file
62
home/private_dot_gnupg/private_gpg.conf
Normal file
|
@ -0,0 +1,62 @@
|
||||||
|
# Source: https://github.com/drduh/config/blob/master/gpg.conf
|
||||||
|
# https://www.gnupg.org/documentation/manuals/gnupg/GPG-Configuration-Options.html
|
||||||
|
# https://www.gnupg.org/documentation/manuals/gnupg/GPG-Esoteric-Options.html
|
||||||
|
# 'gpg --version' to get capabilities
|
||||||
|
# Use AES256, 192, or 128 as cipher
|
||||||
|
personal-cipher-preferences AES256 AES192 AES
|
||||||
|
# Use SHA512, 384, or 256 as digest
|
||||||
|
personal-digest-preferences SHA512 SHA384 SHA256
|
||||||
|
# Use ZLIB, BZIP2, ZIP, or no compression
|
||||||
|
personal-compress-preferences ZLIB BZIP2 ZIP Uncompressed
|
||||||
|
# Default preferences for new keys
|
||||||
|
default-preference-list SHA512 SHA384 SHA256 AES256 AES192 AES ZLIB BZIP2 ZIP Uncompressed
|
||||||
|
# SHA512 as digest to sign keys
|
||||||
|
cert-digest-algo SHA512
|
||||||
|
# SHA512 as digest for symmetric ops
|
||||||
|
s2k-digest-algo SHA512
|
||||||
|
# AES256 as cipher for symmetric ops
|
||||||
|
s2k-cipher-algo AES256
|
||||||
|
# UTF-8 support for compatibility
|
||||||
|
charset utf-8
|
||||||
|
# Show Unix timestamps
|
||||||
|
fixed-list-mode
|
||||||
|
# No comments in signature
|
||||||
|
no-comments
|
||||||
|
# No version in output
|
||||||
|
no-emit-version
|
||||||
|
# Disable banner
|
||||||
|
no-greeting
|
||||||
|
# Long hexidecimal key format
|
||||||
|
keyid-format 0xlong
|
||||||
|
# Display UID validity
|
||||||
|
list-options show-uid-validity
|
||||||
|
verify-options show-uid-validity
|
||||||
|
# Display all keys and their fingerprints
|
||||||
|
with-fingerprint
|
||||||
|
# Display key origins and updates
|
||||||
|
#with-key-origin
|
||||||
|
# Cross-certify subkeys are present and valid
|
||||||
|
require-cross-certification
|
||||||
|
# Disable caching of passphrase for symmetrical ops
|
||||||
|
no-symkey-cache
|
||||||
|
# Enable smartcard
|
||||||
|
use-agent
|
||||||
|
# Disable recipient key ID in messages
|
||||||
|
throw-keyids
|
||||||
|
# Default/trusted key ID to use (helpful with throw-keyids)
|
||||||
|
#default-key 0xFF3E7D88647EBCDB
|
||||||
|
#trusted-key 0xFF3E7D88647EBCDB
|
||||||
|
# Group recipient keys (preferred ID last)
|
||||||
|
#group keygroup = 0xFF00000000000001 0xFF00000000000002 0xFF3E7D88647EBCDB
|
||||||
|
# Keyserver URL
|
||||||
|
#keyserver hkps://keys.openpgp.org
|
||||||
|
#keyserver hkps://keyserver.ubuntu.com:443
|
||||||
|
#keyserver hkps://hkps.pool.sks-keyservers.net
|
||||||
|
#keyserver hkps://pgp.ocf.berkeley.edu
|
||||||
|
# Proxy to use for keyservers
|
||||||
|
#keyserver-options http-proxy=http://127.0.0.1:8118
|
||||||
|
#keyserver-options http-proxy=socks5-hostname://127.0.0.1:9050
|
||||||
|
# Verbose output
|
||||||
|
#verbose
|
||||||
|
# Show expired subkeys
|
||||||
|
#list-options show-unusable-subkeys
|
Loading…
Reference in a new issue