git.wh0rd.org / home.git / blame
| Commit | Line | Data |
|---|---|---|
| dc0a4152 | 1 | set crypt_autosign = yes |
| 043ae7f4 | 2 | set crypt_replyencrypt = yes |
| dc0a4152 MF |
3 | set crypt_verify_sig = yes |
| 4 | set pgp_auto_decode = yes | |
| 5 | set pgp_autosign = yes | |
| 6 | set pgp_sign_as = B902B5271325F892AC251AD441633B9FE837F581 | |
| 7 | set pgp_use_gpg_agent = yes | |
| 8 | ||
| 9 | # Note that we explicitly set the comment armor header since GnuPG, when used | |
| 10 | # in some localiaztion environments, generates 8bit data in that header, thereby | |
| 11 | # breaking PGP/MIME. | |
| 12 | ||
| 13 | # decode application/pgp | |
| 14 | set pgp_decode_command="gpg --status-fd=2 %?p?--passphrase-fd 0? --no-verbose --quiet --batch --output - %f" | |
| 15 | ||
| 16 | # verify a pgp/mime signature | |
| 27eb37a8 | 17 | set pgp_verify_command="gpg --status-fd=2 --no-verbose --quiet --batch --output - --verify %s %f 2>&1 | grep -E -v '^gpg:.+(aka|Signature made)'" |
| dc0a4152 MF |
18 | |
| 19 | # decrypt a pgp/mime attachment | |
| 20 | set pgp_decrypt_command="gpg --status-fd=2 %?p?--passphrase-fd 0? --no-verbose --quiet --batch --output - %f" | |
| 21 | ||
| 22 | # create a pgp/mime signed attachment | |
| 23 | set pgp_sign_command="gpg --no-verbose --batch --quiet --output - %?p?--passphrase-fd 0? --armor --detach-sign --textmode %?a?-u %a? %f" | |
| 24 | ||
| 25 | # create a application/pgp signed (old-style) message | |
| 26 | set pgp_clearsign_command="gpg --no-verbose --batch --quiet --output - %?p?--passphrase-fd 0? --armor --textmode --clearsign %?a?-u %a? %f" | |
| 27 | ||
| 28 | # create a pgp/mime encrypted attachment | |
| 043ae7f4 | 29 | set pgp_encrypt_only_command="pgpewrap gpg --batch --quiet --no-verbose --output - --encrypt --textmode --armor --always-trust -- -r %r -- %f" |
| dc0a4152 MF |
30 | |
| 31 | # create a pgp/mime encrypted and signed attachment | |
| 32 | set pgp_encrypt_sign_command="pgpewrap gpg %?p?--passphrase-fd 0? --batch --quiet --no-verbose --textmode --output - --encrypt --sign %?a?-u %a? --armor --always-trust -- -r %r -- %f" | |
| 33 | ||
| 34 | # import a key into the public key ring | |
| 35 | set pgp_import_command="gpg --no-verbose --import %f" | |
| 36 | ||
| 37 | # export a key from the public key ring | |
| 38 | set pgp_export_command="gpg --no-verbose --export --armor %r" | |
| 39 | ||
| 40 | # verify a key | |
| 41 | set pgp_verify_key_command="gpg --verbose --batch --fingerprint --check-sigs %r" | |
| 42 | ||
| 43 | # read in the public key ring | |
| 44 | set pgp_list_pubring_command="gpg --no-verbose --batch --quiet --with-colons --list-keys %r" | |
| 45 | ||
| 46 | # read in the secret key ring | |
| 47 | set pgp_list_secring_command="gpg --no-verbose --batch --quiet --with-colons --list-secret-keys %r" | |
| 48 | ||
| 043ae7f4 MF |
49 | # fetch keys via e-mail address |
| 50 | #set pgp_getkeys_command | |
| dc0a4152 MF |
51 | |
| 52 | # pattern for good signature - may need to be adapted to locale! | |
| 53 | #set pgp_good_sign="^gpgv?: Good signature from " | |
| 54 | ||
| 55 | # This version uses --status-fd messages | |
| 56 | set pgp_good_sign="^\\[GNUPG:\\] GOODSIG" |