From d00bf2cb2d5087164fa509a4f20a2be62a519044 Mon Sep 17 00:00:00 2001 From: sommerfeld Date: Tue, 21 Apr 2026 01:23:18 +0100 Subject: refactor: restructure to chezmoi source state Rename home/ contents to chezmoi naming conventions: - dot_ prefix for dotfiles and dot-dirs - private_dot_ for .gnupg and .ssh directories - private_ for 0600 files (nym.pub) - executable_ for scripts in .local/bin and display-toggle.sh - symlink_ for mimeapps.list symlink --- private_dot_gnupg/gpg-agent.conf | 3 +++ private_dot_gnupg/gpg.conf | 11 +++++++++++ private_dot_gnupg/sshcontrol | 17 +++++++++++++++++ 3 files changed, 31 insertions(+) create mode 100644 private_dot_gnupg/gpg-agent.conf create mode 100644 private_dot_gnupg/gpg.conf create mode 100644 private_dot_gnupg/sshcontrol (limited to 'private_dot_gnupg') diff --git a/private_dot_gnupg/gpg-agent.conf b/private_dot_gnupg/gpg-agent.conf new file mode 100644 index 0000000..6c27318 --- /dev/null +++ b/private_dot_gnupg/gpg-agent.conf @@ -0,0 +1,3 @@ +enable-ssh-support +pinentry-program /usr/bin/pinentry-curses +allow-loopback-pinentry diff --git a/private_dot_gnupg/gpg.conf b/private_dot_gnupg/gpg.conf new file mode 100644 index 0000000..e6672bf --- /dev/null +++ b/private_dot_gnupg/gpg.conf @@ -0,0 +1,11 @@ +personal-digest-preferences SHA512 +cert-digest-algo SHA512 +default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed +personal-cipher-preferences TWOFISH CAMELLIA256 AES 3DES + +keyserver-options auto-key-retrieve + +keyid-format 0xlong +with-fingerprint + +default-key B79D F5F3 7D7F 9B0F 3902 38D5 3298 945F 717C 85F8 diff --git a/private_dot_gnupg/sshcontrol b/private_dot_gnupg/sshcontrol new file mode 100644 index 0000000..9197976 --- /dev/null +++ b/private_dot_gnupg/sshcontrol @@ -0,0 +1,17 @@ +# List of allowed ssh keys. Only keys present in this file are used +# in the SSH protocol. The ssh-add tool may add new entries to this +# file to enable them; you may also add them manually. Comment +# lines, like this one, as well as empty lines are ignored. Lines do +# have a certain length limit but this is not serious limitation as +# the format of the entries is fixed and checked by gpg-agent. A +# non-comment line starts with optional white spaces, followed by the +# keygrip of the key given as 40 hex digits, optionally followed by a +# caching TTL in seconds, and another optional field for arbitrary +# flags. Prepend the keygrip with an '!' mark to disable it. + +91191A4A6E86279A901A7D38A7512EC126518FA5 +22747ABA1B4502F186654CD84DC353B0C3BD353F +9F3FCCA0F99AE1C5D05B834F0E89C79970A7B74A +5E9259E1EFFFB85520F62A5C31C97033C1DEDBD8 +515584E3A76C03EEA4A563156882938003FBEC90 +E843F385FEEAE6CA2E1B9A67796241FDA5423CA3 -- cgit v1.2.3-70-g09d2