My linux config and rc files https://git.strisemarx.com/dotfiles/atom?h=master 2026-04-17T13:47:34Z 2026-04-17T13:47:34Z sommerfeld sommerfeld@sommerfeld.dev 2026-04-17T13:47:34Z urn:sha1:e2da9bd7318c3811b344c756358104fd8c7e4994 With GPG key passphrases being removed (LUKS provides at-rest encryption), pam-gnupg is no longer needed. Remove: - pam-gnupg config file and keygrip list - pam-gnupg-git from base metapackage - Cache TTL overrides (defaults are fine without passphrase caching) - allow-preset-passphrase (only needed by pam-gnupg) 2026-04-17T13:47:34Z sommerfeld sommerfeld@sommerfeld.dev 2026-04-17T13:47:34Z urn:sha1:644785859ac960c0da64016065a800bf660ffbcf Drop custom GNUPGHOME=~/.local/share/gnupg which required 6 systemd socket/service overrides with hardcoded directory hashes. GnuPG periodically changes its hash algorithm on updates, silently breaking systemd socket activation and pam-gnupg passphrase presetting. With default GNUPGHOME, stock systemd units work out of the box. - Move gpg.conf, gpg-agent.conf, sshcontrol to home/.gnupg/ - Delete all gpg-agent socket/service/dirmngr override dirs - Remove GNUPGHOME from .zprofile, .pam_environment, pam-gnupg - Remove GNUPGHOME from vdirsyncer and bridge service overrides