1
0
mirror of https://github.com/drduh/YubiKey-Guide.git synced 2024-12-22 21:58:06 +00:00

Create local configuration, too

This commit is contained in:
drduh 2016-02-01 21:45:34 -05:00
parent 172a4292a5
commit f4c76ba210

View File

@ -40,10 +40,11 @@ If you have a comment or suggestion, please open an issue on GitHub.
- [Import public key](#import-public-key) - [Import public key](#import-public-key)
- [Trust master key](#trust-master-key) - [Trust master key](#trust-master-key)
- [GnuPG](#gnupg) - [GnuPG](#gnupg)
- [Create configuration](#create-configuration-1)
- [Encryption/decryption](#encryptiondecryption) - [Encryption/decryption](#encryptiondecryption)
- [Signing](#signing) - [Signing](#signing)
- [SSH](#ssh) - [SSH](#ssh)
- [Create configuration](#create-configuration-1) - [Update configuration](#create-configuration)
- [Replace ssh-agent with gpg-agent](#replace-ssh-agent-with-gpg-agent) - [Replace ssh-agent with gpg-agent](#replace-ssh-agent-with-gpg-agent)
- [Copy public key to server](#copy-public-key-to-server) - [Copy public key to server](#copy-public-key-to-server)
- [Connect with public key authentication](#connect-with-public-key-authentication) - [Connect with public key authentication](#connect-with-public-key-authentication)
@ -796,6 +797,25 @@ Type `key 1` again to deselect and switch to the next key.
## GnuPG ## GnuPG
### Create configuration
$ cat > ~/gpg.conf
use-agent
personal-cipher-preferences AES256 AES192 AES CAST5
personal-digest-preferences SHA512 SHA384 SHA256 SHA224
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed
cert-digest-algo SHA512
s2k-digest-algo SHA512
charset utf-8
fixed-list-mode
no-comments
no-emit-version
keyid-format 0xlong
list-options show-uid-validity
verify-options show-uid-validity
with-fingerprint
^D (Press Control-D)
### Encryption/decryption ### Encryption/decryption
$ echo "$(uname -a)" | gpg --encrypt --armor -r 0x47FE984F98EE7407 | gpg --debug --decrypt --armor $ echo "$(uname -a)" | gpg --encrypt --armor -r 0x47FE984F98EE7407 | gpg --debug --decrypt --armor
@ -822,20 +842,23 @@ Type `key 1` again to deselect and switch to the next key.
## SSH ## SSH
### Create configuration ### Update configuration
$ cat >> ~/.gnupg/gpg-agent.conf
enable-ssh-support
^D (Press Control-D)
$ cat > ~/.gnupg/gpg-agent.conf $ cat > ~/.gnupg/gpg-agent.conf
pinentry-program /usr/bin/pinentry-curses pinentry-program /usr/bin/pinentry-curses
default-cache-ttl 60 default-cache-ttl 60
max-cache-ttl 120 max-cache-ttl 120
enable-ssh-support
write-env-file write-env-file
use-standard-socket use-standard-socket
^D (Press Control-D) ^D (Press Control-D)
### Replace ssh-agent with gpg-agent ### Replace ssh-agent with gpg-agent
$ pkill ssh-agent && \ $ pkill ssh-agent ; \
eval $(gpg-agent --daemon --enable-ssh-support --use-standard-socket \ eval $(gpg-agent --daemon --enable-ssh-support --use-standard-socket \
--log-file ~/.gnupg/gpg-agent.log --write-env-file) --log-file ~/.gnupg/gpg-agent.log --write-env-file)