Update dom0.sh

This commit is contained in:
Tommy 2022-05-24 08:24:34 -04:00 committed by GitHub
parent 3cf5ddad3c
commit 2246cedb4d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -12,6 +12,6 @@ qvm-service --enable work qubes-u2f-proxy
echo "export export QT_QPA_PLATFORMTHEME=gtk2" | sudo tee /etc/environment
#I am using the sys-usb VM for GPG here because I am using a PGP smartcard. You probably shouldn't do this if you store your GPG private key on disk. It **might** be safer to still have a dedicated gpg-backend VM for this, but then you will have to reassign the smartcard to the VM after every boot, which could be annoying.
echo "emails sys-usb allow" | sudo tee /etc/qubes-rpc/policy/qubes.Gpg
echo "@anyvm @anyvm ask,default_target=sys-usb" | sudo tee -a /etc/qubes-rpc/policy/qubes.Gpg
#Obviously replace vault-gpg with the actual GPG backend that you are using https://www.qubes-os.org/doc/split-gpg/
echo "emails vault-gpg allow" | sudo tee /etc/qubes-rpc/policy/qubes.Gpg
echo "@anyvm @anyvm ask,default_target=vault-gpg" | sudo tee -a /etc/qubes-rpc/policy/qubes.Gpg