3 ### tripe-keys configuration file
5 ### see tripe-keys.conf(5) for full details
7 ###--------------------------------------------------------------------------
8 ### File locations (required).
10 ## The base URL for the repository files. Include the trailing slash if
12 # base-url = http://some.server.somewhere/blah/
14 ## The local directory name for the repository files. Again, include the
15 ## trailing slash if necessary.
16 # base-dir = /some/directory/blah/
18 ###--------------------------------------------------------------------------
19 ### Crypto parameters.
21 ## The key-exchange type. May be `dh' or `ec'.
24 ## Key-generation parameters for key exchange group.
25 # kx-param = -LS -b3072 -B256
26 # kx-param = -Pnist-p256
28 ## Expiry time for peer key-exchange keys.
29 # kx-expire = now + 1 year
31 ## Bulk crypto transform to use. May be `v0', or `iiv'.
34 ## Symmetric encryption scheme to use.
35 # cipher = rijndael-cbc
37 ## Hash function to use. (We derive the MGF and MAC from this.)
40 ## Signature scheme to use for signing/verifying repository archives.
45 ## How recently an archive must have been signed to be valid.
48 ## When the master signing key expires.
49 # sig-expire = forever
51 ###--------------------------------------------------------------------------
52 ### Master key integrity
54 ## Since the master public key is contained within the repository, we must
55 ## check its integrity: therefore we record its sequence number and
56 ## fingerprint here. These are filled in automatically by `tripe-keys
57 ## upload'. Leave them as they are.
58 master-sequence = @MASTER-SEQUENCE@
59 hk-master = @HK-MASTER@