more changes and explanation of assumptions
parent
131cb3b368
commit
c9494292a1
|
@ -1,12 +1,26 @@
|
||||||
# ~/.kuvert: example configuration file for kuvert v2
|
# ~/.kuvert: example configuration file for kuvert v2
|
||||||
|
# to be used in a docker container
|
||||||
|
#
|
||||||
|
# there are a couple of strong assumptions in in this config file
|
||||||
|
# as opposed to the default dot-kuvert
|
||||||
|
#
|
||||||
|
# 1. SMTP submission is the default mechanism
|
||||||
|
# 2. unattended operation means passwordless secret key
|
||||||
|
# 3. only one secret key used and available, most probably
|
||||||
|
# auto-generated, so no need for defaultkey (let gpg select the key itself)
|
||||||
|
# 4. submission via SMTP from outside the container requires binding to 0.0.0.0
|
||||||
|
#
|
||||||
|
# WARNING: DO NOT USE THIS FILE IN A NON-DOCKER ENVIRONMENT
|
||||||
|
# WARNING: UNLESS YOU KNOW WHAT YOU ARE DOING
|
||||||
|
|
||||||
# options are given without leading whitespace
|
# options are given without leading whitespace
|
||||||
|
|
||||||
# which key to sign with by default
|
# which key to sign with by default
|
||||||
defaultkey 0x1234abcd
|
# if unset, gpg chooses -- usually first available secret key
|
||||||
|
#defaultkey 0x1234abcd
|
||||||
|
|
||||||
# logging to syslog, which facility? defaults to no syslog
|
# logging to syslog, which facility? defaults to no syslog
|
||||||
syslog mail
|
#syslog mail
|
||||||
|
|
||||||
# no separate logfile
|
# no separate logfile
|
||||||
logfile /home/kuvert/logs/kuvert.log
|
logfile /home/kuvert/logs/kuvert.log
|
||||||
|
@ -37,8 +51,9 @@ preamble f
|
||||||
msserver smtp.example.com
|
msserver smtp.example.com
|
||||||
msport 587
|
msport 587
|
||||||
ssl starttls
|
ssl starttls
|
||||||
# ssl-key mycerts/my.key.pem
|
#ssl-key mycerts/my.key.pem
|
||||||
# ssl-cert mycerts/my.cert.pem
|
#ssl-cert mycerts/my.cert.pem
|
||||||
|
#ssl-ca mycerts/ca.cert.pem
|
||||||
msuser kuvert@example.com
|
msuser kuvert@example.com
|
||||||
mspass smtp-password
|
mspass smtp-password
|
||||||
mspass-from-query-secret f
|
mspass-from-query-secret f
|
||||||
|
@ -58,11 +73,14 @@ mahost 0.0.0.0
|
||||||
ma-user kuvert
|
ma-user kuvert
|
||||||
ma-pass ChangeMe
|
ma-pass ChangeMe
|
||||||
|
|
||||||
defaultaction fallback-all
|
defaultaction fallback
|
||||||
|
|
||||||
alwaystrust t
|
alwaystrust t
|
||||||
|
|
||||||
use-agent f
|
# using gpg agent means that if a key is passwordless
|
||||||
|
# (as might be the case in a docker-based deployment)
|
||||||
|
# kuvert will not hang on asking the user for password
|
||||||
|
use-agent t
|
||||||
#query-secret /usr/bin/q-agent get %s
|
#query-secret /usr/bin/q-agent get %s
|
||||||
#flush-secret /usr/bin/q-agent delete %s
|
#flush-secret /usr/bin/q-agent delete %s
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue