2 files changed, 30 insertions, 8 deletions

diff --git a/_gnupg/dirmngr.conf b/_gnupg/dirmngr.conf
index 7696da9..0e45325 100644
--- a/_gnupg/dirmngr.conf
+++ b/_gnupg/dirmngr.conf
@@ -1,21 +1,26 @@
-#####################################################################
-# GnuPG configuration file
 #
 # dirmngr: CRL and OCSP daemon (GnuPG >= 2.1)
 # ~/.gnupg/dirmngr.conf
 #
-# Ref:
+# References:
 # [1] SKS Keyservers: Overview of the pools
 #     https://sks-keyservers.net/overview-of-pools.php
 #
-# Weitian LI <liweitianux@gmail.com>
-# 2015/01/16
-#####################################################################
+# Aaron LI
+# Created: 2015-01-16
+# Updated: 2016-05-14
+#
 
 # keyserver hkps://hkps.pool.sks-keyservers.net
 # This pool only contains servers available using hkps.
 # keyserver-options ca-cert-file' is obsolete! (GnuPG >= 2.1)
-# NOTE: cannot use '~' or '$HOME' in path ??
-hkp-cacert /home/aly/dotfiles/.gnupg/sks-keyservers.netCA.pem
+hkp-cacert sks-keyservers.netCA.pem
+
+# Entirely disable the use of LDAP
+disable-ldap
+
+# File from which to read the list of LDAP servers
+ldapserverlist-file dirmngr_ldapservers.conf
+
 
 # vim: set ts=8 sw=4 tw=0 fenc=utf-8 ft=gpg: #
diff --git a/_gnupg/dirmngr_ldapservers.conf b/_gnupg/dirmngr_ldapservers.conf
new file mode 100644
index 0000000..1acaf59
--- /dev/null
+++ b/_gnupg/dirmngr_ldapservers.conf
@@ -0,0 +1,17 @@
+#
+# ~/.gnupg/dirmngr_ldapservers.conf
+#
+# This file specifies the list of LDAP servers to consult for CRLs
+# and certificates.
+#
+# See dirmngr(8) --ldapserverlist-file
+#
+#
+# Aaron LI
+# 2016-05-14
+#
+
+# Format:
+# HOSTNAME:PORT:USERNAME:PASSWORD:BASE_DN
+
+# vim: set ts=8 sw=4 tw=0 fenc=utf-8 ft=gpg: #