mirror of
https://gitea.blesmrt.net/mikaela/shell-things.git
synced 2024-11-22 11:19:22 +01:00
gpg.conf: heavy cleanup
This commit is contained in:
parent
3c2e08f7d0
commit
d4885fbf6c
@ -5,7 +5,7 @@
|
|||||||
# This file is free software; as a special exception the author gives
|
# This file is free software; as a special exception the author gives
|
||||||
# unlimited permission to copy and/or distribute it, with or without
|
# unlimited permission to copy and/or distribute it, with or without
|
||||||
# modifications, as long as this notice is preserved.
|
# modifications, as long as this notice is preserved.
|
||||||
#
|
#
|
||||||
# This file is distributed in the hope that it will be useful, but
|
# This file is distributed in the hope that it will be useful, but
|
||||||
# WITHOUT ANY WARRANTY, to the extent permitted by law; without even the
|
# WITHOUT ANY WARRANTY, to the extent permitted by law; without even the
|
||||||
# implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
|
# implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
|
||||||
@ -20,9 +20,7 @@
|
|||||||
#
|
#
|
||||||
# See the man page for a list of options.
|
# See the man page for a list of options.
|
||||||
|
|
||||||
#keyserver-options auto-key-retrieve no-include-revoked
|
# Ignore preferred keyserver, remove signatures from keys not in keyring
|
||||||
#import-clean
|
|
||||||
# Ignore preferred keyserver, clean up imports (as import/export options)
|
|
||||||
keyserver-options no-honor-keyserver-url import-clean
|
keyserver-options no-honor-keyserver-url import-clean
|
||||||
|
|
||||||
# Try to automatically find keys from local/wkd if key for email address isn't found, but we are encrypting to email address.
|
# Try to automatically find keys from local/wkd if key for email address isn't found, but we are encrypting to email address.
|
||||||
@ -34,14 +32,11 @@ default-key 0x99392F62BAE30723
|
|||||||
# WTOP
|
# WTOP
|
||||||
#default-key 0xDC189FE6FA9BD685
|
#default-key 0xDC189FE6FA9BD685
|
||||||
|
|
||||||
|
|
||||||
# Encrypt to sender's key by default
|
# Encrypt to sender's key by default
|
||||||
default-recipient-self
|
default-recipient-self
|
||||||
|
|
||||||
# Always encrypt to my key
|
# I don't think there is point in "encrypt-to 0xOWNKEYID, because there
|
||||||
encrypt-to 0x99392F62BAE30723
|
# is the default-recipient-self above.
|
||||||
# WTOP
|
|
||||||
#default-key 0xDC189FE6FA9BD685
|
|
||||||
|
|
||||||
# Use UTF-8 charset
|
# Use UTF-8 charset
|
||||||
charset UTF-8
|
charset UTF-8
|
||||||
@ -55,44 +50,10 @@ armor
|
|||||||
|
|
||||||
# Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys.
|
# Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys.
|
||||||
|
|
||||||
#personal-cipher-preferences AES256,AES192,AES,CAST5,3DES
|
|
||||||
#personal-digest-preferences SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5
|
|
||||||
#personal-compress-preferences BZIP2,ZLIB,ZIP
|
|
||||||
|
|
||||||
# Default preferences
|
|
||||||
#default-preference-list AES256,AES192,AES,CAST5,3DES SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 BZIP2,ZLIB,ZIP
|
|
||||||
|
|
||||||
# Forcing preferred settings even if it's against OpenPGP standards
|
|
||||||
#cert-digest-algo SHA512
|
|
||||||
#digest-algo SHA512
|
|
||||||
#compress-algo BZIP2
|
|
||||||
|
|
||||||
#no-allow-non-selfsigned-uid
|
|
||||||
#allow-multiple-messages
|
|
||||||
|
|
||||||
# Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string.
|
# Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string.
|
||||||
keyid-format 0xLONG
|
keyid-format 0xLONG
|
||||||
with-fingerprint
|
with-fingerprint
|
||||||
|
|
||||||
# Use Eye Of Gnome as default image viewer
|
|
||||||
photo-viewer eom %i
|
|
||||||
|
|
||||||
# The default to use for the check level when signing a key.
|
|
||||||
#default-cert-level 2
|
|
||||||
|
|
||||||
#lock-multiple
|
|
||||||
|
|
||||||
expert
|
|
||||||
#verbose
|
|
||||||
#verbose
|
|
||||||
#verbose
|
|
||||||
|
|
||||||
## Web of Trust is dead
|
|
||||||
# remove unusable signatures, this should allow key verification in cases
|
|
||||||
# like Tails https://tails.boum.org/install/expert/usb/index.en.html
|
|
||||||
import-options import-clean
|
|
||||||
export-options export-clean
|
|
||||||
|
|
||||||
# Ask everything
|
# Ask everything
|
||||||
ask-cert-level
|
ask-cert-level
|
||||||
ask-cert-expire
|
ask-cert-expire
|
||||||
|
44
gpg/gpg.conf
44
gpg/gpg.conf
@ -20,9 +20,7 @@
|
|||||||
#
|
#
|
||||||
# See the man page for a list of options.
|
# See the man page for a list of options.
|
||||||
|
|
||||||
#keyserver-options auto-key-retrieve no-include-revoked
|
# Ignore preferred keyserver, remove signatures from keys not in keyring
|
||||||
#import-clean
|
|
||||||
# Ignore preferred keyserver, clean up imports (as import/export options)
|
|
||||||
keyserver-options no-honor-keyserver-url import-clean
|
keyserver-options no-honor-keyserver-url import-clean
|
||||||
|
|
||||||
# Try to automatically find keys from local/wkd if key for email address isn't found, but we are encrypting to email address.
|
# Try to automatically find keys from local/wkd if key for email address isn't found, but we are encrypting to email address.
|
||||||
@ -37,10 +35,8 @@ auto-key-locate local,wkd
|
|||||||
# Encrypt to sender's key by default
|
# Encrypt to sender's key by default
|
||||||
default-recipient-self
|
default-recipient-self
|
||||||
|
|
||||||
# Always encrypt to my key
|
# I don't think there is point in "encrypt-to 0xOWNKEYID, because there
|
||||||
#encrypt-to 0x99392F62BAE30723 # MIKAELA_GREP MIKAELA_GREP_GPG
|
# is the default-recipient-self above.
|
||||||
# WTOP
|
|
||||||
#encrypt-to 0xDC189FE6FA9BD685 # MIKAELA_GREP # MIKAELA_GREP_GPG
|
|
||||||
|
|
||||||
# Use UTF-8 charset
|
# Use UTF-8 charset
|
||||||
charset UTF-8
|
charset UTF-8
|
||||||
@ -54,44 +50,10 @@ armor
|
|||||||
|
|
||||||
# Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys.
|
# Note to self: import-clean = delete signatures from unknown keys || import-minimal = remove all signatures from keys.
|
||||||
|
|
||||||
#personal-cipher-preferences AES256,AES192,AES,CAST5,3DES
|
|
||||||
#personal-digest-preferences SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5
|
|
||||||
#personal-compress-preferences BZIP2,ZLIB,ZIP
|
|
||||||
|
|
||||||
# Default preferences
|
|
||||||
#default-preference-list AES256,AES192,AES,CAST5,3DES SHA512,SHA384,SHA256,SHA224,RIPEMD160,SHA1,MD5 BZIP2,ZLIB,ZIP
|
|
||||||
|
|
||||||
# Forcing preferred settings even if it's against OpenPGP standards
|
|
||||||
#cert-digest-algo SHA512
|
|
||||||
#digest-algo SHA512
|
|
||||||
#compress-algo BZIP2
|
|
||||||
|
|
||||||
#no-allow-non-selfsigned-uid
|
|
||||||
#allow-multiple-messages
|
|
||||||
|
|
||||||
# Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string.
|
# Show the LONG KEYID and fingerprint by default and tell that it's hexadecimal string.
|
||||||
keyid-format 0xLONG
|
keyid-format 0xLONG
|
||||||
with-fingerprint
|
with-fingerprint
|
||||||
|
|
||||||
# Use Eye Of Gnome as default image viewer
|
|
||||||
photo-viewer eom %i
|
|
||||||
|
|
||||||
# The default to use for the check level when signing a key.
|
|
||||||
#default-cert-level 2
|
|
||||||
|
|
||||||
#lock-multiple
|
|
||||||
|
|
||||||
expert
|
|
||||||
#verbose
|
|
||||||
#verbose
|
|
||||||
#verbose
|
|
||||||
|
|
||||||
## Web of Trust is dead
|
|
||||||
# remove unusable signatures, this should allow key verification in cases
|
|
||||||
# like Tails https://tails.boum.org/install/expert/usb/index.en.html
|
|
||||||
import-options import-clean
|
|
||||||
export-options export-clean
|
|
||||||
|
|
||||||
# Ask everything
|
# Ask everything
|
||||||
ask-cert-level
|
ask-cert-level
|
||||||
ask-cert-expire
|
ask-cert-expire
|
||||||
|
Loading…
Reference in New Issue
Block a user