diff options
| author |  sommerfeld <[email protected]> | 2026-04-17 14:47:34 +0100 |
|---|---|---|
| committer | sommerfeld <[email protected]> | 2026-04-17 14:47:34 +0100 |
| commit | 644785859ac960c0da64016065a800bf660ffbcf (patch) | |
| tree | 503139e3804cb19c277a2179dd6d0c4ff6efa2a4 /home/.gnupg/gpg.conf | |
| parent | 8fadfc96e378886aa5e9d3ddf82bb7913c0cf0e4 (diff) | |
| download | dotfiles-644785859ac960c0da64016065a800bf660ffbcf.tar.gz dotfiles-644785859ac960c0da64016065a800bf660ffbcf.tar.bz2 dotfiles-644785859ac960c0da64016065a800bf660ffbcf.zip | |
refactor: revert GNUPGHOME to default ~/.gnupg
Drop custom GNUPGHOME=~/.local/share/gnupg which required 6 systemd
socket/service overrides with hardcoded directory hashes. GnuPG
periodically changes its hash algorithm on updates, silently breaking
systemd socket activation and pam-gnupg passphrase presetting.
With default GNUPGHOME, stock systemd units work out of the box.
- Move gpg.conf, gpg-agent.conf, sshcontrol to home/.gnupg/
- Delete all gpg-agent socket/service/dirmngr override dirs
- Remove GNUPGHOME from .zprofile, .pam_environment, pam-gnupg
- Remove GNUPGHOME from vdirsyncer and bridge service overrides
Diffstat (limited to 'home/.gnupg/gpg.conf')
| -rw-r--r-- | home/.gnupg/gpg.conf | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/home/.gnupg/gpg.conf b/home/.gnupg/gpg.conf new file mode 100644 index 0000000..e6672bf --- /dev/null +++ b/home/.gnupg/gpg.conf @@ -0,0 +1,11 @@ +personal-digest-preferences SHA512 +cert-digest-algo SHA512 +default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed +personal-cipher-preferences TWOFISH CAMELLIA256 AES 3DES + +keyserver-options auto-key-retrieve + +keyid-format 0xlong +with-fingerprint + +default-key B79D F5F3 7D7F 9B0F 3902 38D5 3298 945F 717C 85F8 |