aboutsummaryrefslogtreecommitdiff
path: root/gnupg
Commit message (Collapse)AuthorAgeFilesLines
* Remove blank lines at end of filesTom Ryder2016-03-283-3/+0
|
* Fix some trailing spacesTom Ryder2015-12-011-1/+1
|
* Generate gpg.conf from m4 template on make callTom Ryder2014-11-135-1/+85
| | | | | | | | | | | | | | | | We have to do this because gpg.conf doesn't understand tilde or environment variable expansion in the configuration file, and the only reliable way to make the ca-cert-file option work between different implementations of gpg(1) and its cURL link is to explicitly specify the path to the CA file. This is probably a better approach than installing the thing as a trusted system CA anyway, which requires root privileges that I don't really want to assume anyone installing this has. I'm also including the CA, CRL, and .pem for the SKS keyservers in this commit. This seems a lesser evil than trying to pull them with cURL or wget at make(1) time.
* Do PKA lookups for keysTom Ryder2014-03-311-1/+4
|
* Stop ``--batch'' breaking things for GnuPGTom Ryder2013-12-111-2/+2
|
* Add commentary to the cryptic GnuPG conf fileTom Ryder2013-11-041-0/+34
|
* Retrieve keys over hkps:// per RiseUp guideTom Ryder2013-10-301-2/+2
| | | | | | | | | | <https://we.riseup.net/riseuplabs+paow/openpgp-best-practices#consider-making-your-default-keyserver-use-a-keyse> The keyserver pool CA needs to be installed for this to work. On Debian: # curl https://sks-keyservers.net/sks-keyservers.netCA.pem \ > /usr/local/share/ca-certificates/sks-keyservers.netCA.crt # update-ca-certificates
* Don't need to specify key ID, only using one nowTom Ryder2013-10-301-1/+0
|
* Add a few best practice settingsTom Ryder2013-10-111-0/+4
| | | | <https://we.riseup.net/riseuplabs+paow/openpgp-best-practices>
* Use closer PGP serverTom Ryder2013-09-251-1/+1
|
* Hold GnuPG keys for longerTom Ryder2013-06-211-2/+2
|
* Make GPG work a little more quietly/transparentlyTom Ryder2013-06-031-0/+3
|
* Add GnuPG configuration filesTom Ryder2013-05-312-0/+13