iankelling.org Git - distro-setup/blob - subdir_files/.gnupg/gpg.conf

   1 # Note: initial files in this directory were created by running
   2 # gpg -k
   3
   4 # for aur, automatically dl & add gpg keys.
   5 keyserver-options auto-key-retrieve
   6 # start gpg agent on login
   7 use-agent
   8
   9
  10 # standard short key ids are easy to collide
  11 # https://security.stackexchange.com/questions/84280/short-openpgp-key-ids-are-insecure-how-to-configure-gnupg-to-use-long-key-ids-i
  12 # https://evil32.com/
  13 # another option is 0xshort
  14 keyid-format 0xlong
  15
  16
  17 default-key B125F60B7B287FF6A2B7DF8F170AF0E2954295DF
  18
  19 # financial key
  20 #default-key 0xFB40960C541A7D1F
  21
  22 # note, i did this so that gpg-agent would not hold open the .gnupg dir.
  23 # so I could unmount the filesystem which holds the .gnupg dir while
  24 # running gpg-agent.
  25 # also, symlinking things like keys in the .gnupg dir is a recipe
  26 # for trouble
  27 # https://askubuntu.com/questions/777900/how-to-configure-gnupgs-s-gpg-agent-socket-location
  28
  29 # rm -f ~/.gnupg/S.gpg-agent
  30 # echo -e "%Assuan%\nsocket=${HOME}/gpg-agent-socket/s" > ~/.gnupg/S.gpg-agent
  31 # # this is also in my conflink scrpt:
  32 # install -d -m700 ~/gpg-agent-socket
  33 # and in /etc/X11/Xsession.d/01iank
  34 # install -o iank -g iank -d -m700 /home/iank/gpg-agent-socket
  35 # because something keeps deleting that directory
  36
  37 # default keyserver. i switch around randomly to find one that is up.
  38 #
  39 #keyserver hkp://pgp.mit.edu
  40 #keyserver hkp://pool.sks-keyservers.net
  41 #keyserver hkp://keyserver.pgp.com
  42 keyserver hkp://ipv4.pool.sks-keyservers.net
  43
  44 # more secure, but had problems with my gpg version
  45 #keyserver hkps://hkps.pool.sks-keyservers.net