diff options
author | Alan Pearce | 2019-06-30 12:42:31 +0200 |
---|---|---|
committer | Alan Pearce | 2019-06-30 12:43:09 +0200 |
commit | 5d314760c15cb68ca79f38a1b019d155ef961e62 (patch) | |
tree | 41098044d2f35514c19e7620414a27bad3a79c8f /gnupg | |
parent | 09a0a4528c94f8b8164671a71d469578d06be283 (diff) | |
download | nixfiles-5d314760c15cb68ca79f38a1b019d155ef961e62.tar.lz nixfiles-5d314760c15cb68ca79f38a1b019d155ef961e62.tar.zst nixfiles-5d314760c15cb68ca79f38a1b019d155ef961e62.zip |
GnuPG: switch to OpenPGP keyserver
Diffstat (limited to 'gnupg')
-rw-r--r-- | gnupg/.gnupg/dirmngr.conf | 7 | ||||
-rw-r--r-- | gnupg/.gnupg/gpg.conf | 5 |
2 files changed, 5 insertions, 7 deletions
diff --git a/gnupg/.gnupg/dirmngr.conf b/gnupg/.gnupg/dirmngr.conf index cb8030bb..f69421d7 100644 --- a/gnupg/.gnupg/dirmngr.conf +++ b/gnupg/.gnupg/dirmngr.conf @@ -1,4 +1,3 @@ -keyserver hkps://hkps.pool.sks-keyservers.net -keyserver hkp://jirk5u4osbsr34t5.onion -use-tor -#hkp-cacert ~/.gnupg/sks-keyservers.netCA.pem +keyserver hkps://keys.openpgp.org +# keyserver hkp://zkaan2xfbuxia2wpf7ofnkbz6r5zdbbvxbunvp5g2iebopbfc4iqmbad.onion +# use-tor diff --git a/gnupg/.gnupg/gpg.conf b/gnupg/.gnupg/gpg.conf index 85a41f4e..61df93cf 100644 --- a/gnupg/.gnupg/gpg.conf +++ b/gnupg/.gnupg/gpg.conf @@ -3,7 +3,6 @@ # https://help.riseup.net/en/security/message-security/openpgp/best-practices # - #----------------------------- # default key #----------------------------- @@ -43,7 +42,7 @@ use-agent # This is the server that --recv-keys, --send-keys, and --search-keys will # communicate with to receive keys from, send keys to, and search for keys on -keyserver hkps://hkps.pool.sks-keyservers.net +keyserver hkps://keys.openpgp.org # Provide a certificate store to override the system default # Get this from https://sks-keyservers.net/sks-keyservers.netCA.pem @@ -59,11 +58,11 @@ keyserver hkps://hkps.pool.sks-keyservers.net # When using --refresh-keys, if the key in question has a preferred keyserver # URL, then disable use of that preferred keyserver to refresh the key from keyserver-options no-honor-keyserver-url - # When searching for a key with --search-keys, include keys that are marked on # the keyserver as revoked keyserver-options include-revoked + #----------------------------- # algorithm and ciphers #----------------------------- |