dotfiles, branch masterMy linux config and rc files
https://git.strisemarx.com/dotfiles/atom?h=master2026-04-17T13:47:35Zchore: remove .pam_environment (only needed by pam-gnupg)2026-04-17T13:47:35Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T13:47:35Zurn:sha1:08c521f7ce7e64fa080360aeb67bf9e92bcf159bfix: set GPG_TTY per interactive shell, not just at login2026-04-17T13:47:34Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T13:47:34Zurn:sha1:c6eb8e5092b22e4bb611deb5a11273547f8b1f1e
GPG_TTY was set in .zprofile (login shell) to /dev/tty1, but terminal
emulator shells get /dev/pts/N. Move the export to .zshrc so each
interactive shell sets the correct TTY before telling the agent.
refactor: remove pam-gnupg and simplify gpg-agent config2026-04-17T13:47:34Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T13:47:34Zurn:sha1:e2da9bd7318c3811b344c756358104fd8c7e4994
With GPG key passphrases being removed (LUKS provides at-rest
encryption), pam-gnupg is no longer needed. Remove:
- pam-gnupg config file and keygrip list
- pam-gnupg-git from base metapackage
- Cache TTL overrides (defaults are fine without passphrase caching)
- allow-preset-passphrase (only needed by pam-gnupg)
refactor: revert GNUPGHOME to default ~/.gnupg2026-04-17T13:47:34Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T13:47:34Zurn:sha1:644785859ac960c0da64016065a800bf660ffbcf
Drop custom GNUPGHOME=~/.local/share/gnupg which required 6 systemd
socket/service overrides with hardcoded directory hashes. GnuPG
periodically changes its hash algorithm on updates, silently breaking
systemd socket activation and pam-gnupg passphrase presetting.
With default GNUPGHOME, stock systemd units work out of the box.
- Move gpg.conf, gpg-agent.conf, sshcontrol to home/.gnupg/
- Delete all gpg-agent socket/service/dirmngr override dirs
- Remove GNUPGHOME from .zprofile, .pam_environment, pam-gnupg
- Remove GNUPGHOME from vdirsyncer and bridge service overrides
fix: update stale gpg-agent socket hash in systemd overrides2026-04-17T13:47:26Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T13:47:26Zurn:sha1:8fadfc96e378886aa5e9d3ddf82bb7913c0cf0e4
GnuPG changed its socket directory hash from
d.hmaqciuk8y8ye3gwt9b6eth1 to d.199epr64wmzkrnk8u8qgricf.
The mismatch broke systemd socket activation and pam-gnupg
passphrase presetting, causing SSH auth failures after reboot.
fix: move GNUPGHOME before SSH_AUTH_SOCK in zprofile2026-04-17T10:17:01Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T10:17:01Zurn:sha1:b7fcd084b324c0f8c445f9c3811d3d1331fb4198
gpgconf --list-dirs agent-ssh-socket needs GNUPGHOME set to return
the correct hashed socket path. Without it, SSH_AUTH_SOCK pointed to
a non-existent socket, breaking GPG agent SSH authentication.
fix: use blkid -s UUID for reliable UUID extraction in create-efi.sh2026-04-17T09:54:19Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T09:54:19Zurn:sha1:e57e8f020fa9c5b5d26c27fa31351a5a96cc906c
The previous 'cut -f 2 -d " "' parsing was fragile and produced
incorrect results depending on blkid output format.
docs: clarify firefox/ deployment target in copilot instructions2026-04-17T09:54:18Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T09:54:18Zurn:sha1:1e5a0201da3979415566a4fce2ed55995263c1ae
Stow target is the Firefox/LibreWolf user profile directory, not home.
refactor: clean up firefox user-overrides.js2026-04-17T09:54:18Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T09:54:18Zurn:sha1:347c608787b1c13ab3556723667064a232f0ffff
- Remove 4 dead commented-out prefs (privatebrowsing.autostart,
sessionstore.privacy_level, media.eme.enabled, disableIPv6 duplicate)
- Remove deprecated pdfjs.disabled (dropped from arkenfox, no longer honored)
- Remove deprecated browser.fixup.domainsuffixwhitelist.i2p (FF120+)
- Strip arkenfox wiki comment bloat: 97 → 22 lines
- Organize remaining 15 active prefs by section
docs: clarify etc/ vs etc2/ and remove stale directory refs2026-04-17T09:54:17Zsommerfeldsommerfeld@sommerfeld.dev2026-04-17T09:54:17Zurn:sha1:ec179ae8cb2909d0e2981ce5a7a6b5169ae04b43
- etc/: stow-deployable symlinks to /etc
- etc2/: manual-copy configs for tools that reject symlinks
- Remove references to deleted lists/ and barscripts/ directories