|
Lines 124-141
For those who do not yet have an OpenPGP key, or need a new key to meet FreeBSD
Link Here
|
| 124 |
[[pgpkeys-create-steps]] |
124 |
[[pgpkeys-create-steps]] |
| 125 |
[.procedure] |
125 |
[.procedure] |
| 126 |
==== |
126 |
==== |
| 127 |
. Install [.filename]#security/gnupg#. Enter these lines in [.filename]#~/.gnupg/gpg.conf# to set minimum acceptable defaults: |
127 |
. Install [.filename]#security/gnupg#. Enter these lines in [.filename]#~/.gnupg/gpg.conf# to set minimum acceptable defaults for signing and new key preferences (see the https://www.gnupg.org/documentation/manuals/gnupg/GPG-Options.html[GnuPG options documentation] for more details): |
| 128 |
+ |
128 |
+ |
| 129 |
[.programlisting] |
129 |
[.programlisting] |
| 130 |
.... |
130 |
.... |
| 131 |
fixed-list-mode |
131 |
# Sorted list of preferred algorithms for signing (strongest to weakest). |
| 132 |
keyid-format 0xlong |
|
|
| 133 |
personal-digest-preferences SHA512 SHA384 SHA256 SHA224 |
132 |
personal-digest-preferences SHA512 SHA384 SHA256 SHA224 |
| 134 |
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 BZIP2 ZLIB ZIP Uncompressed |
133 |
# Default preferences for new keys |
| 135 |
verify-options show-uid-validity |
134 |
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 CAMELLIA256 AES192 CAMELLIA192 AES CAMELLIA128 CAST5 BZIP2 ZLIB ZIP Uncompressed |
| 136 |
list-options show-uid-validity |
|
|
| 137 |
sig-notation issuer-fpr@notations.openpgp.fifthhorseman.net=%g |
| 138 |
cert-digest-algo SHA512 |
| 139 |
.... |
135 |
.... |
| 140 |
. Generate a key: |
136 |
. Generate a key: |
| 141 |
+ |
137 |
+ |