diff options
| author | Werner Koch <wk@gnupg.org> | 2007-03-06 21:44:41 +0100 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2007-03-06 21:44:41 +0100 |
| commit | ed84b0f787a48fe2cfdd55b3acf70ca6b4732291 (patch) | |
| tree | 24607f518b4e1064785728d8efcdfb3971d69f56 /doc/examples | |
| parent | Ported multiple-messages protection. (diff) | |
| download | gnupg2-ed84b0f787a48fe2cfdd55b3acf70ca6b4732291.tar.xz gnupg2-ed84b0f787a48fe2cfdd55b3acf70ca6b4732291.zip | |
Support for a global gpgconf configuration file.
Diffstat (limited to 'doc/examples')
| -rw-r--r-- | doc/examples/gpgconf.conf | 59 |
1 files changed, 59 insertions, 0 deletions
diff --git a/doc/examples/gpgconf.conf b/doc/examples/gpgconf.conf new file mode 100644 index 000000000..194ed7938 --- /dev/null +++ b/doc/examples/gpgconf.conf @@ -0,0 +1,59 @@ +# gpgconf.conf - configuration for gpgconf +#---------------------------------------------------------------------- +# This file is read by gpgconf(1) to setup defaults for all or +# specified users and groups. It may be used to change the hardwired +# defaults in gpgconf and to enforce certain values for the various +# GnuPG related configuration files. +# +# Empty lines and comment lines, indicated by a hash mark as first non +# white space character, are ignored. The line is separated by white +# space into fields. The first field is used to match the user or +# group and must start at the first column, the file is processes +# sequential until a matching rle is found. A rule may contain +# several lines, continuation lines are indicated by a indenting them. +# +# Syntax of a line: +# <key>|WS <component> <option> ["["<flag>"]"] [<value>] +# +# Examples for the <key> field: +# foo - Matches the user "foo". +# foo: - Matches the user "foo". +# foo:staff - Matches the user "foo" or the group "staff". +# :staff - Matches the group "staff". +# * - Matches any user. +# All other variants are not defined and reserved for future use. +# +# <component> and <option> are as specified by gpgconf. +# <flag> may be one of: +# default - Delete the option so that the default is used. +# no-change - Mark the field as non changeable by gpgconf. +# change - Mark the field as changeable by gpgconf. +# +# Example file: +#========== +# :staff gpg-agent allow-mark-trusted [change] +# gpg-agent min-passphrase-len 6 +# +# * gpg-agent min-passphrase-len [no-change] 12 +# gpg-agent allow-mark-trusted [default] +# gpg-agent allow-mark-trusted [no-change] +# gpgsm enable-ocsp +#=========== +# All users in the group "staff" are allowed to change the value for +# --allow-mark-trusted; gpgconf's default is not to allow a change +# through its interface. When "gpgconf --apply-defaults" is used, +# "allow-mark-trusted" will get enabled and "min-passphrase-len" set +# to 6. All other users are not allowed to change +# "min-passphrase-len" and "allow-mark-trusted". When "gpgconf +# --apply-defaults" is used for them, "min-passphrase-len" is set to +# 12, "allow-mark-trusted" deleted from the config file and +# "enable-ocsp" is put into the config file of gpgsm. The latter may +# be changed by any user. +#------------------------------------------------------------------- + + +# Allow all users to change the allow-mark-trusted option. +# (This was the default prior to gnupg 2.0.3) +* gpg-agent allow-mark-trusted [change] + + |