all repos — nixfiles @ 5d314760c15cb68ca79f38a1b019d155ef961e62

System and user configuration, managed by nix and home-manager

GnuPG: switch to OpenPGP keyserver

Alan Pearce
commit

5d314760c15cb68ca79f38a1b019d155ef961e62

parent

09a0a4528c94f8b8164671a71d469578d06be283

2 files changed, 5 insertions(+), 7 deletions(-)

jump to
M gnupg/.gnupg/dirmngr.confgnupg/.gnupg/dirmngr.conf
@@ -1,4 +1,3 @@
-keyserver hkps://hkps.pool.sks-keyservers.net -keyserver hkp://jirk5u4osbsr34t5.onion -use-tor -#hkp-cacert ~/.gnupg/sks-keyservers.netCA.pem +keyserver hkps://keys.openpgp.org +# keyserver hkp://zkaan2xfbuxia2wpf7ofnkbz6r5zdbbvxbunvp5g2iebopbfc4iqmbad.onion +# use-tor
M gnupg/.gnupg/gpg.confgnupg/.gnupg/gpg.conf
@@ -3,7 +3,6 @@ # This is an implementation of the Riseup OpenPGP Best Practices
# https://help.riseup.net/en/security/message-security/openpgp/best-practices # - #----------------------------- # default key #-----------------------------
@@ -43,7 +42,7 @@ #-----------------------------
# This is the server that --recv-keys, --send-keys, and --search-keys will # communicate with to receive keys from, send keys to, and search for keys on -keyserver hkps://hkps.pool.sks-keyservers.net +keyserver hkps://keys.openpgp.org # Provide a certificate store to override the system default # Get this from https://sks-keyservers.net/sks-keyservers.netCA.pem
@@ -59,10 +58,10 @@
# When using --refresh-keys, if the key in question has a preferred keyserver # URL, then disable use of that preferred keyserver to refresh the key from keyserver-options no-honor-keyserver-url - # When searching for a key with --search-keys, include keys that are marked on # the keyserver as revoked keyserver-options include-revoked + #----------------------------- # algorithm and ciphers