free
/
freedombone
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
瀏覽代碼

Use curve 25519 for gpg keys

Bob Mottram 7 年之前
父節點
402b459eed
當前提交
4d8592f7ab
共有 3 個文件被更改,包括 4 次插入11 次删除
分割檢視 顯示文件統計
  1. 1
    3
      src/freedombone-adduser
  2. 2
    5
      src/freedombone-base-email
  3. 1
    3
      src/freedombone-utils-backup

+ 1
- 3
src/freedombone-adduser 查看文件 

@@ -136,10 +136,8 @@ chmod 700 /home/$ADD_USERNAME/.gnupg
136 136 
 chmod 600 /home/$ADD_USERNAME/.gnupg/*
137 137
138 138 
 # Generate a GPG key
139 
-echo 'Key-Type: 1' > /home/$ADD_USERNAME/gpg-genkey.conf
140 
-echo 'Key-Length: 4096' >> /home/$ADD_USERNAME/gpg-genkey.conf
139 
+echo 'Key-Type: 9' > /home/$ADD_USERNAME/gpg-genkey.conf
141 140 
 echo 'Subkey-Type: 1' >> /home/$ADD_USERNAME/gpg-genkey.conf
142 
-echo 'Subkey-Length: 4096' >> /home/$ADD_USERNAME/gpg-genkey.conf
143 141 
 echo "Name-Real:  $ADD_USERNAME" >> /home/$ADD_USERNAME/gpg-genkey.conf
144 142 
 echo "Name-Email: $ADD_USERNAME@$HOSTNAME" >> /home/$ADD_USERNAME/gpg-genkey.conf
145 143 
 echo 'Expire-Date: 0' >> /home/$ADD_USERNAME/gpg-genkey.conf

+ 2
- 5
src/freedombone-base-email 查看文件 

@@ -1506,10 +1506,9 @@ function create_gpg_subkey {
1506 1506
1507 1507 
     # Generate a GPG subkey
1508 1508 
     # Here a 2048bit length is used to be compatible with yubikey
1509 
-    echo 'Key-Type: 1' > /home/$MY_USERNAME/gpg-genkey.conf
1509 
+    echo 'Key-Type: 9' > /home/$MY_USERNAME/gpg-genkey.conf
1510 1510 
     echo "Key-Grip: $KEYGRIP" > /home/$MY_USERNAME/gpg-genkey.conf
1511 1511 
     echo 'Subkey-Type: 1' >> /home/$MY_USERNAME/gpg-genkey.conf
1512 
-    echo 'Subkey-Length: 2048' >> /home/$MY_USERNAME/gpg-genkey.conf
1513 1512 
     echo "subkey-Usage: $GPG_KEY_USAGE" > /home/$MY_USERNAME/gpg-genkey.conf
1514 1513 
     echo "Name-Real:  $MY_NAME" >> /home/$MY_USERNAME/gpg-genkey.conf
1515 1514 
     echo "Name-Email: $MY_EMAIL_ADDRESS" >> /home/$MY_USERNAME/gpg-genkey.conf
 
@@ -1624,10 +1623,8 @@ function configure_gpg {
1624 1623 
         fi
1625 1624 
     else
1626 1625 
         # Generate a GPG key
1627 
-        echo 'Key-Type: 1' > /home/$MY_USERNAME/gpg-genkey.conf
1628 
-        echo 'Key-Length: 4096' >> /home/$MY_USERNAME/gpg-genkey.conf
1626 
+        echo 'Key-Type: 9' > /home/$MY_USERNAME/gpg-genkey.conf
1629 1627 
         echo 'Subkey-Type: 1' >> /home/$MY_USERNAME/gpg-genkey.conf
1630 
-        echo 'Subkey-Length: 4096' >> /home/$MY_USERNAME/gpg-genkey.conf
1631 1628 
         echo "Name-Real:  $MY_NAME" >> /home/$MY_USERNAME/gpg-genkey.conf
1632 1629 
         echo "Name-Email: $MY_EMAIL_ADDRESS" >> /home/$MY_USERNAME/gpg-genkey.conf
1633 1630 
         echo 'Expire-Date: 0' >> /home/$MY_USERNAME/gpg-genkey.conf

+ 1
- 3
src/freedombone-utils-backup 查看文件 

@@ -65,10 +65,8 @@ function configure_backup_key {
65 65 
     # Generate a GPG key for backups
66 66 
     BACKUP_KEY_EXISTS=$(gpg_key_exists "$MY_USERNAME" "$MY_NAME (backup key)")
67 67 
     if [[ $BACKUP_KEY_EXISTS == "no" ]]; then
68 
-        echo 'Key-Type: 1' > /home/$MY_USERNAME/gpg-genkey.conf
69 
-        echo 'Key-Length: 4096' >> /home/$MY_USERNAME/gpg-genkey.conf
68 
+        echo 'Key-Type: 9' > /home/$MY_USERNAME/gpg-genkey.conf
70 69 
         echo 'Subkey-Type: 1' >> /home/$MY_USERNAME/gpg-genkey.conf
71 
-        echo 'Subkey-Length: 4096' >> /home/$MY_USERNAME/gpg-genkey.conf
72 70 
         echo "Name-Real:  $MY_NAME" >> /home/$MY_USERNAME/gpg-genkey.conf
73 71 
         echo "Name-Email: $MY_EMAIL_ADDRESS" >> /home/$MY_USERNAME/gpg-genkey.conf
74 72 
         echo "Name-Comment: backup key" >> /home/$MY_USERNAME/gpg-genkey.conf