CNS standard system setup for GnuPG.

GnuPG program

$ gpg --version
gpg (GnuPG) 1.4.11
Copyright (C) 2010 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

Home: ~/.gnupg
Supported algorithms:
Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH, CAMELLIA128, 
        CAMELLIA192, CAMELLIA256
Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression: Uncompressed, ZIP, ZLIB, BZIP2

CNS configuration files

# Non-default options in CNS gpg.conf
# Load the IDEA extension if needed
load-extension /usr/lib/gnupg/idea

#
# Preferences
#
# The most highly ranked cipher in this list is also used for the --symmetric encryption command.
personal-cipher-preferences AES256 AES192 AES CAMELLIA256 CAMELLIA192 CAMELLIA128 3DES CAST5 TWOFISH BLOWFISH IDEA
# The most highly ranked digest algorithm in this list is also used when signing without encryption (e.g. --clearsign or --sign).
# Note: SHA512 may not be supported by PGP8
personal-digest-preferences SHA256 SHA512 SHA384 SHA224 RIPEMD160 SHA1 MD5
# The most highly ranked compression algorithm in this list is also used when there are no recipient keys to consider (e.g. --symmetric).
personal-compress-preferences BZIP2 ZLIB ZIP uncompressed
# This preference list is used for new keys and becomes the default for "setpref" in the edit menu.
default-preference-list SHA256 SHA512 SHA384 SHA224 RIPEMD160 SHA1 MD5 AES256 AES192 AES CAMELLIA256 CAMELLIA192 CAMELLIA128 3DES CAST5 TWOFISH BLOWFISH IDEA BZIP2 ZLIB ZIP uncompressed
#
s2k-digest-algo sha256
s2k-cipher-algo aes256
ask-cert-level
cert-digest-algo sha256
no-force-v3-sigs
keyserver hkps://keyserver.cns.vt.edu/
keyserver-options ca-cert-file=/etc/pki/gnupg/gpg-ca-bundle.crt
use-agent
list-options show-policy-urls show-notations show-sig-expire show-uid-validity show-sig-expire show-uid-validity show-unusable-uids show-unusable-subkeys