GnuPG Configuration

Client

Configuration Locations

GnuPG knows the following configurations locations:

  • Local: ~/.gnupg/gpg.conf

Configuration

View user IDs seperat from keys

fixed-list-mode

Display long IDs

keyid-format 0xlong

Display fingerprints

with-fingerprint

Display UIDs

list-options show-uid-validity
verify-options show-uid-validity

Don’t display introductionary message

no-greeting

Set default keyserver

sudo wget https://sks-keyservers.net/sks-keyservers.netCA.pem -O /etc/ssl/private/sks-keyservers.netCA.pem

keyserver hkps://hkps.pool.sks-keyservers.net
keyserver-options ca-cert-file=/etc/ssl/private/sks-keyservers.netCA.pem

Fetch keys automatically from keyserver

keyserver-options auto-key-retrieve

Use strong digests for new keys

default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 BZIP2 ZLIB ZIP Uncompressed

Use strong digests for signatures

cert-digest-algo SHA512

Use strong digests for recipients

personal-digest-preferences SHA512 SHA384 SHA256 SHA224

Set a default key

FIXME underlined and italic
default-key *KEY_ID*

Server

Configuration

Avoid using any remote key servers

keyserver-options no-honor-keyserver-url