Initial Commit
This commit is contained in:
commit
d18f18fc29
GPG key ID:
7FCD64BD81180ED0
28 changed files with 1415 additions and 0 deletions
84
common/gpg/default.nix
Normal file
84
common/gpg/default.nix
Normal file
|
|
@ -0,0 +1,84 @@
|
|||
{
|
||||
config,
|
||||
lib,
|
||||
pkgs,
|
||||
...
|
||||
}: {
|
||||
services.gpg-agent = lib.mkIf pkgs.stdenv.isLinux {
|
||||
enable = true;
|
||||
enableScDaemon = true;
|
||||
enableExtraSocket = true;
|
||||
defaultCacheTtl = 34560000;
|
||||
maxCacheTtl = 34560000;
|
||||
pinentryPackage = pkgs.pinentry.tty;
|
||||
enableSshSupport = true;
|
||||
|
||||
extraConfig = ''
|
||||
extra-socket /run/user/${toString config.home.uid}/gnupg/S.gpg-agent.extra
|
||||
'';
|
||||
};
|
||||
|
||||
programs.gpg = {
|
||||
enable = true;
|
||||
|
||||
scdaemonSettings = {
|
||||
disable-ccid = true;
|
||||
};
|
||||
|
||||
# Basically Ripped From Yubikey-Guide
|
||||
settings = {
|
||||
personal-cipher-preferences = "AES256 AES192 AES";
|
||||
|
||||
personal-digest-preferences = "SHA512 SHA384 SHA256";
|
||||
|
||||
personal-compress-preferences = "ZLIB BZIP2 ZIP Uncompressed";
|
||||
|
||||
default-preference-list = "SHA512 SHA384 SHA256 AES256 AES192 AES ZLIB BZIP2 ZIP Uncompressed";
|
||||
|
||||
cert-digest-algo = "SHA512";
|
||||
|
||||
s2k-digest-algo = "SHA512";
|
||||
|
||||
s2k-cipher-algo = "AES256";
|
||||
|
||||
charset = "utf-8";
|
||||
|
||||
no-comments = "";
|
||||
|
||||
no-emit-version = "";
|
||||
|
||||
no-greeting = "";
|
||||
|
||||
keyid-format = "0xlong";
|
||||
|
||||
list-options = "show-uid-validity";
|
||||
|
||||
with-fingerprint = "";
|
||||
|
||||
require-cross-certification = "";
|
||||
|
||||
no-symkey-cache = "";
|
||||
|
||||
armor = "";
|
||||
|
||||
use-agent = "";
|
||||
|
||||
throw-keyids = "";
|
||||
|
||||
default-key = "A972C2063F4F2554";
|
||||
|
||||
trusted-key = "A972C2063F4F2554";
|
||||
};
|
||||
|
||||
publicKeys = [
|
||||
# Personal Yubikey.
|
||||
{
|
||||
source = ./pubkey.txt;
|
||||
trust = "ultimate";
|
||||
}
|
||||
];
|
||||
|
||||
mutableTrust = false;
|
||||
mutableKeys = false;
|
||||
};
|
||||
}
|
||||
23
common/gpg/pubkey.txt
Normal file
23
common/gpg/pubkey.txt
Normal file
|
|
@ -0,0 +1,23 @@
|
|||
-----BEGIN PGP PUBLIC KEY BLOCK-----
|
||||
Version: SKS 1.1.6
|
||||
Comment: Hostname: pgp.mit.edu
|
||||
|
||||
mDMEZhmo/hYJKwYBBAHaRw8BAQdA5KtBDUHqW0HmTNZPx8AixJLu0f5Sn9hO9YKp6VP4cPe0
|
||||
JExvcmVuem8gR29vZCA8Zm9laGFtbWVyQGRpc3Jvb3Qub3JnPoiOBBMWCgA2FiEE2nCZLbIg
|
||||
Jb/DvyDQqXLCBj9PJVQFAmYZqP4CGwEECwkIBwQVCgkIBRYCAwEAAh4FAheAAAoJEKlywgY/
|
||||
TyVUJQsBAPt5wWxJjY7aR7i4JW9GeGhXpi9ybRPulRAS+KZDdNuLAP0Sh03lJzV4D+jWG2z8
|
||||
vtq2iLkJyufs1Pz0VTTQfxAPD7gzBGYZqYcWCSsGAQQB2kcPAQEHQP76alk6Ei6ep4Mxhr9b
|
||||
dwJkWvd5xr89W2PWWPBTnaEAiO8EGBYKACAWIQTacJktsiAlv8O/INCpcsIGP08lVAUCZhmp
|
||||
hwIbAgCBCRCpcsIGP08lVHYgBBkWCgAdFiEE3fCObmGYe/Mi43lOf81kvYEYDtAFAmYZqYcA
|
||||
CgkQf81kvYEYDtCBiQEA9y8tM4pdirGdoHXb6GlHcMG1JfIJf22UbW1KfyFskmUA/2lPJsfC
|
||||
DNlkciqn7UIfNo4nKgZmr+Y2UcXq7hFjnKsLIAoBAIlUjngd17+kNA4iKs6hUuHc9SO8P4gc
|
||||
iCAF67OH5uydAQD/Epq+qu59AWgKn+1pFZkvaPrGDONasDHptr2oOZLUBrgzBGYZqZ0WCSsG
|
||||
AQQB2kcPAQEHQKtCcKS1jN/WSb4Ggvpz11pkUdE4kMgrN0xwptXLgSBXiHgEGBYKACAWIQTa
|
||||
cJktsiAlv8O/INCpcsIGP08lVAUCZhmpnQIbIAAKCRCpcsIGP08lVLf1AP0VOdfnzaNQFd9m
|
||||
IjcO0PTzYS8HV2Ku9I5iJQhGozhj1wEAuLT28hEDfkKrmELLu0aTzCZLUMOTnvAulFaTA+zF
|
||||
VQu4OARmGamREgorBgEEAZdVAQUBAQdA/Zugq1SwUUdLqkkPnDFukfz/fAr7HAoIyooDukW2
|
||||
HDkDAQgHiHgEGBYKACAWIQTacJktsiAlv8O/INCpcsIGP08lVAUCZhmpkQIbDAAKCRCpcsIG
|
||||
P08lVPrjAQDbhPJ7BGXwBIWh4cksS+gapFc5JGilL5O4cz5iPJkQKAEAk3yNx9hU6iNlGD21
|
||||
2Er+ZgBoyJo6eqD6XeBF9vS3dgo=
|
||||
=nZ4q
|
||||
-----END PGP PUBLIC KEY BLOCK-----
|
||||
Loading…
Add table
Add a link
Reference in a new issue