gpg.conf: comment things I don't understand etc.

keyserver is not needed with GPGv2, I have no idea what some of those
options do and thus have suspect that they make my GPG more insecure and
I have used MATE for years and don't have eog available.
This commit is contained in:
Aminda Suomalainen 2018-09-18 21:37:28 +03:00
parent 8a8a686110
commit cc39aa3a2e
No known key found for this signature in database
GPG Key ID: 0C207F07B2F32B67
2 changed files with 40 additions and 40 deletions

View File

@ -1,7 +1,7 @@
# Options for GnuPG # Options for GnuPG
# Copyright 1998, 1999, 2000, 2001, 2002, 2003, # Copyright 1998, 1999, 2000, 2001, 2002, 2003,
# 2010 Free Software Foundation, Inc. # 2010 Free Software Foundation, Inc.
# 2012 - 2016 Mikaela Suomalainen # 2012 - 2018 Mikaela Suomalainen
# This file is free software; as a special exception the author gives # This file is free software; as a special exception the author gives
# unlimited permission to copy and/or distribute it, with or without # unlimited permission to copy and/or distribute it, with or without
# modifications, as long as this notice is preserved. # modifications, as long as this notice is preserved.
@ -21,7 +21,7 @@
# See the man page for a list of options. # See the man page for a list of options.
# This is one of the most used keyservers as far as I know. # This is one of the most used keyservers as far as I know.
keyserver hkp://pool.sks-keyservers.net #keyserver hkp://pool.sks-keyservers.net
keyserver-options auto-key-retrieve no-include-revoked keyserver-options auto-key-retrieve no-include-revoked
#import-clean #import-clean
@ -41,7 +41,7 @@ encrypt-to 0x0C207F07B2F32B67
charset UTF-8 charset UTF-8
display-charset utf-8 display-charset utf-8
# use GPG Agent to avoid retyping passphrase very ofoten. # use GPG Agent to avoid retyping passphrase very often.
use-agent use-agent
# Do everything in ASCII format by default instead of binary # Do everything in ASCII format by default instead of binary
@ -49,33 +49,33 @@ armor
# Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys. # Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys.
personal-cipher-preferences AES256,AES192,AES,CAST5,3DES #personal-cipher-preferences AES256,AES192,AES,CAST5,3DES
personal-digest-preferences SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 #personal-digest-preferences SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5
personal-compress-preferences BZIP2,ZLIB,ZIP #personal-compress-preferences BZIP2,ZLIB,ZIP
# Default preferences # Default preferences
default-preference-list AES256,AES192,AES,CAST5,3DES SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 BZIP2,ZLIB,ZIP #default-preference-list AES256,AES192,AES,CAST5,3DES SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 BZIP2,ZLIB,ZIP
default-keyserver-url hkp://pool.sks-keyservers.net #default-keyserver-url hkp://pool.sks-keyservers.net
# Forcing preferred settings even if it's against OpenPGP standards # Forcing preferred settings even if it's against OpenPGP standards
cert-digest-algo SHA512 #cert-digest-algo SHA512
digest-algo SHA512 #digest-algo SHA512
compress-algo BZIP2 #compress-algo BZIP2
no-allow-non-selfsigned-uid #no-allow-non-selfsigned-uid
allow-multiple-messages #allow-multiple-messages
# Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string. # Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string.
keyid-format 0xLONG keyid-format 0xLONG
with-fingerprint with-fingerprint
# Use Eye Of Gnome as default image viewer # Use Eye Of Gnome as default image viewer
photo-viewer eog %i photo-viewer eom %i
# The default to use for the check level when signing a key. # The default to use for the check level when signing a key.
#default-cert-level 2 #default-cert-level 2
lock-multiple #lock-multiple
expert expert
#verbose #verbose
@ -83,8 +83,8 @@ expert
#verbose #verbose
# Teach to be careful with sensitive things by exporting them like everything else # Teach to be careful with sensitive things by exporting them like everything else
import-options import-local-sigs import-clean #import-options import-local-sigs import-clean
export-options export-local-sigs export-attributes export-sensitive-revkeys export-clean #export-options export-local-sigs export-attributes export-sensitive-revkeys export-clean
# Ask everything # Ask everything
ask-cert-level ask-cert-level
@ -99,6 +99,6 @@ list-options show-uid-validity
# Add comments to things signed/encrypted by gpg # Add comments to things signed/encrypted by gpg
comment Website: https://mikaela.info/ comment Website: https://mikaela.info/
#comment Public key: https://mikaela.info/PGP/0xB2F32B67.txt comment Public key: https://mikaela.info/PGP/0xB2F32B67.txt
#comment gpg --fetch-keys https://mikaela.info/PGP/0xB2F32B67.txt comment gpg --fetch-keys https://mikaela.info/PGP/0xB2F32B67.txt
comment Fingerprint = 2910 4A46 C561 5BF9 78A0 83F2 0C20 7F07 B2F3 2B67 comment Fingerprint = 2910 4A46 C561 5BF9 78A0 83F2 0C20 7F07 B2F3 2B67

View File

@ -1,7 +1,7 @@
# Options for GnuPG # Options for GnuPG
# Copyright 1998, 1999, 2000, 2001, 2002, 2003, # Copyright 1998, 1999, 2000, 2001, 2002, 2003,
# 2010 Free Software Foundation, Inc. # 2010 Free Software Foundation, Inc.
# 2012 - 2016 Mikaela Suomalainen # 2012 - 2018 Mikaela Suomalainen
# This file is free software; as a special exception the author gives # This file is free software; as a special exception the author gives
# unlimited permission to copy and/or distribute it, with or without # unlimited permission to copy and/or distribute it, with or without
# modifications, as long as this notice is preserved. # modifications, as long as this notice is preserved.
@ -21,7 +21,7 @@
# See the man page for a list of options. # See the man page for a list of options.
# This is one of the most used keyservers as far as I know. # This is one of the most used keyservers as far as I know.
keyserver hkp://pool.sks-keyservers.net #keyserver hkp://pool.sks-keyservers.net
keyserver-options auto-key-retrieve no-include-revoked keyserver-options auto-key-retrieve no-include-revoked
#import-clean #import-clean
@ -41,7 +41,7 @@ default-recipient-self
charset UTF-8 charset UTF-8
display-charset utf-8 display-charset utf-8
# use GPG Agent to avoid retyping passphrase very ofoten. # use GPG Agent to avoid retyping passphrase very often.
use-agent use-agent
# Do everything in ASCII format by default instead of binary # Do everything in ASCII format by default instead of binary
@ -49,33 +49,33 @@ armor
# Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys. # Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys.
personal-cipher-preferences AES256,AES192,AES,CAST5,3DES #personal-cipher-preferences AES256,AES192,AES,CAST5,3DES
personal-digest-preferences SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 #personal-digest-preferences SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5
personal-compress-preferences BZIP2,ZLIB,ZIP #personal-compress-preferences BZIP2,ZLIB,ZIP
# Default preferences # Default preferences
default-preference-list AES256,AES192,AES,CAST5,3DES SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 BZIP2,ZLIB,ZIP #default-preference-list AES256,AES192,AES,CAST5,3DES SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 BZIP2,ZLIB,ZIP
default-keyserver-url hkp://pool.sks-keyservers.net #default-keyserver-url hkp://pool.sks-keyservers.net
# Forcing preferred settings even if it's against OpenPGP standards # Forcing preferred settings even if it's against OpenPGP standards
cert-digest-algo SHA512 #cert-digest-algo SHA512
digest-algo SHA512 #digest-algo SHA512
compress-algo BZIP2 #compress-algo BZIP2
no-allow-non-selfsigned-uid #no-allow-non-selfsigned-uid
allow-multiple-messages #allow-multiple-messages
# Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string. # Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string.
keyid-format 0xLONG keyid-format 0xLONG
with-fingerprint with-fingerprint
# Use Eye Of Gnome as default image viewer # Use Eye Of Gnome as default image viewer
photo-viewer eog %i photo-viewer eom %i
# The default to use for the check level when signing a key. # The default to use for the check level when signing a key.
#default-cert-level 2 #default-cert-level 2
lock-multiple #lock-multiple
expert expert
#verbose #verbose
@ -83,8 +83,8 @@ expert
#verbose #verbose
# Teach to be careful with sensitive things by exporting them like everything else # Teach to be careful with sensitive things by exporting them like everything else
import-options import-local-sigs import-clean #import-options import-local-sigs import-clean
export-options export-local-sigs export-attributes export-sensitive-revkeys export-clean #export-options export-local-sigs export-attributes export-sensitive-revkeys export-clean
# Ask everything # Ask everything
ask-cert-level ask-cert-level