# https://security.stackexchange.com/questions/84280/short-openpgp-key-ids-are-insecure-how-to-configure-gnupg-to-use-long-key-ids-i
# https://evil32.com/
# another option is 0xshort
-keyid-format 0xlong
+keyid-format long
+
default-key B125F60B7B287FF6A2B7DF8F170AF0E2954295DF
-default-key 0xFB40960C541A7D1F
+# financial key
+#default-key 0xFB40960C541A7D1F
# note, i did this so that gpg-agent would not hold open the .gnupg dir.
# so I could unmount the filesystem which holds the .gnupg dir while
# echo -e "%Assuan%\nsocket=${HOME}/gpg-agent-socket/s" > ~/.gnupg/S.gpg-agent
# # this is also in my conflink scrpt:
# install -d -m700 ~/gpg-agent-socket
+# and in /etc/X11/Xsession.d/01iank
+# install -o iank -g iank -d -m700 /home/iank/gpg-agent-socket
+# because something keeps deleting that directory
+
+# default keyserver. i switch around randomly to find one that is up.
+#
+#keyserver hkp://pgp.mit.edu
+#keyserver hkp://pool.sks-keyservers.net
+#keyserver hkp://keyserver.pgp.com
+#keyserver hkp://ipv4.pool.sks-keyservers.net
+keyserver hkp://keys.gnupg.net
+
+
+# more secure, but had problems with my gpg version
+#keyserver hkps://hkps.pool.sks-keyservers.net