Originally cloned, stripped and modified from Paul Irish's dotfiles with some further customizations.
- Clone this repository
- Run
./sync.shand confirm deletion of existing files when prompted.
- iTerm Theme: Argonaut
- Shell: oh-my-zsh
- Prompt: Spaceship
- Font: Inconsolata, Inconsolata-g for Powerline
Mac OS by default wants to use the OS X keychain. But I want to use git-credential-netrc.
Verify problem with
$ git config --system credential.helper
osxkeychain
Then try
git config --system --unset credential.helper
Then hopefully it uses our .gitconfig…
Copy keys to another computer, per gpg docs on exchanging keys.
Important
When exporting/importing the private key, you'll be prompted to enter the key's password.
First, export the public and private keys.
Tip
Use --armor flag if readable ascii output is preferred.
gpg --export <user@email> --output <public.gpg>
gpg --export-secret-keys <user@email> --output <private.gpg>Then export the trust database
gpg --export-ownertrust > ownertrust-file.txtgpg --import <public.gpg>
gpg --import <private.gpg>Note
The private key is not the full key, but rather is tied to the YubiKey. Run gpg --list-secret-keys and the # in ssb# indicates that the secret subkey is not available. There should be a Card serial no. listed in sec.
And then import the trust database
gpg --import-ownertrust ownertrust-file.txtIf later using the key there is an erorr message that says
"There is no assurance this key belongs to the named user gpg:",
then run
gpg --list-keys
gpg --edit-key <KEY_ID>
gpg> trust
and select a value, e.g. 5 for ultimate trust.
Example use case: need to update GitHub API token.
First, decrypt the .netrc.gpg into .netrc
gpg --decrypt --recipient <user@email> -o .netrc .netrc.gpgMake changes to .netrc
Then re-encrypt to a .netrc.gpg
gpg --encrypt --recipient <user@email> -o .netrc.gpg .netrcCaution
Don't forget to delete the unencrypted .netrc file.