X-Git-Url: https://iankelling.org/git/?p=distro-setup;a=blobdiff_plain;f=subdir_files%2F.gnupg%2Fgpg.conf;h=d5b5c41ea90e30985b977057ddf9f86e6da353d8;hp=189bf936308e197e8e9a69339145ceccb482f162;hb=90bd397922e7240c41377e7404f79f190bfbc9d8;hpb=bb607af2511b613bda78a43d8463ab24bc814720

diff --git a/subdir_files/.gnupg/gpg.conf b/subdir_files/.gnupg/gpg.conf
index 189bf93..d5b5c41 100644
--- a/subdir_files/.gnupg/gpg.conf
+++ b/subdir_files/.gnupg/gpg.conf
@@ -6,11 +6,40 @@ keyserver-options auto-key-retrieve
 # start gpg agent on login
 use-agent
 
+
 # standard short key ids are easy to collide
 # https://security.stackexchange.com/questions/84280/short-openpgp-key-ids-are-insecure-how-to-configure-gnupg-to-use-long-key-ids-i
 # https://evil32.com/
-#keyid-format 0xlong
+# another option is 0xshort
+keyid-format 0xlong
+
+
+default-key B125F60B7B287FF6A2B7DF8F170AF0E2954295DF
+
+# financial key
+#default-key 0xFB40960C541A7D1F
+
+# note, i did this so that gpg-agent would not hold open the .gnupg dir.
+# so I could unmount the filesystem which holds the .gnupg dir while
+# running gpg-agent.
+# also, symlinking things like keys in the .gnupg dir is a recipe
+# for trouble
+# https://askubuntu.com/questions/777900/how-to-configure-gnupgs-s-gpg-agent-socket-location
+
+# rm -f ~/.gnupg/S.gpg-agent
+# echo -e "%Assuan%\nsocket=${HOME}/gpg-agent-socket/s" > ~/.gnupg/S.gpg-agent
+# # this is also in my conflink scrpt:
+# install -d -m700 ~/gpg-agent-socket
+# and in /etc/X11/Xsession.d/01iank
+# install -o iank -g iank -d -m700 /home/iank/gpg-agent-socket
+# because something keeps deleting that directory
+
+# default keyserver. i switch around randomly to find one that is up.
+#
+#keyserver hkp://pgp.mit.edu
+#keyserver hkp://pool.sks-keyservers.net
+#keyserver hkp://keyserver.pgp.com
+keyserver hkp://ipv4.pool.sks-keyservers.net
 
-# however, not using for now, since I just want to
-# identify the keys i have, not remote keys.
-keyid-format 0xshort
+# more secure, but had problems with my gpg version
+#keyserver hkps://hkps.pool.sks-keyservers.net