[submodule "sec"]
path = sec
url = gpg::rsync:ateliers.heureux-cyclage.org:/sec
+[submodule "lib/tool/openssl"]
+ path = lib/tool/openssl
+ url = git://git.autogeree.net/tool/openssl
+[submodule "lib/tool/gnupg"]
+ path = lib/tool/gnupg
+ url = git://git.autogeree.net/tool/gnupg
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+.../lib/tool/admin/etc/gnupg/configure
\ No newline at end of file
--- /dev/null
+.../lib/tool/admin/etc/gnupg/options
\ No newline at end of file
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+dnl # vim: ft=sh
+Key-Type: RSA
+Key-Length: 4096
+Key-Usage: sign
+Passphrase:shell("$tool"/etc/gnupg/\$openpgp/pass squat.net/admin@)
+Preferences: TWOFISH BLOWFISH AES256 CAST5 CAMELLIA256 3DES SHA512 SHA384 SHA256 SHA224 SHA1 BZIP2 ZLIB ZIP NONE MDC NO-KS-MODIFY
+Name-Real: squat!net
+Name-Email: admin@squat.net
+Name-Comment:
+Expire-Date: 10y
+Revoker:
+Subkeys: e s
+
--- /dev/null
+@admin@squat.net
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+dnl # vim: ft=sh
+Key-Type: RSA
+Key-Length: 4096
+Key-Usage: sign
+Passphrase:shell("$tool"/etc/gnupg/\$openpgp/pass squat.net/log@ squat.net/admin@)
+Preferences: TWOFISH BLOWFISH AES256 CAST5 CAMELLIA256 3DES SHA512 SHA384 SHA256 SHA224 SHA1 BZIP2 ZLIB ZIP NONE MDC NO-KS-MODIFY
+Name-Real: squat!net log
+Name-Email: log@squat.net
+Name-Comment: Encrypt Only
+Expire-Date: 0
+Revoker: shell( \
+ key="@admin@squat.net";
+ export gpg="$tool"/gpg;
+ gnupg="$tool"/lib/tool/admin/lib/tool/gnupg;
+ printf "%s:%s sensitive" \
+ $("$gnupg"/key/algo "$key") \
+ $("$gnupg"/key/fpr "$key")
+ )
+Subkeys: e
--- /dev/null
+@log@squat.net
--- /dev/null
+admin@
\ No newline at end of file
--- /dev/null
+.../lib/tool/admin/etc/gnupg/preset
\ No newline at end of file
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+--local-user admin@heureux-cyclage.org
+--recipient admin@heureux-cyclage.org
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+.../etc/gnupg/org/heureux-cyclage/x509@
\ No newline at end of file
--- /dev/null
+.../etc/gnupg/org/heureux-cyclage/x509@
\ No newline at end of file
--- /dev/null
+# vim: ft=cfg
+[ req ]
+ default_bits = 4096
+ default_md = sha512
+ distinguished_name = distinguished_name
+ prompt = no
+ req_extensions = extensions
+ utf8 = yes
+[ distinguished_name ]
+ countryName = FR
+ #stateOrProvinceName =
+ #localityName =
+ 0.organizationName = L’Heureux Cyclage
+ organizationalUnitName = public
+ commonName = *.heureux-cyclage.org
+ # NOTE: wildcard certificate (more expen$ive)
+[ extensions ]
+ basicConstraints = critical,CA:FALSE
+ # NOTE: this is not a Certificate Authority,
+ # but only a leaf certificate, and thus
+ # does not allow user certificates.
+ keyUsage = keyEncipherment, keyAgreement
+ subjectAltName = email:admin@heureux-cyclage.org
+ subjectKeyIdentifier = hash
--- /dev/null
+../...
\ No newline at end of file
--- /dev/null
+.../lib/tool/admin/etc/openssl/$x509/req/configure
\ No newline at end of file
--- /dev/null
+lib/tool/admin/gpg
\ No newline at end of file
-Subproject commit 2c5bb765f7316493e21a3ab1de57dd1aeed3ea29
+Subproject commit fe52d19a3ba1e585489718263dce92224a902405
--- /dev/null
+lib/tool/admin/mkdir
\ No newline at end of file
-Subproject commit 2ae82b01eddb201e25ab8a3d08a4d00da8b44364
+Subproject commit b29147c06f5a2c59dcf86b0e076fcc1e84567c10
--- /dev/null
+.../sec/var
\ No newline at end of file
+++ /dev/null
-../...
\ No newline at end of file