|
|
@@ -6327,7 +6327,7 @@ function configure_backup_key {
|
|
6327
|
6327
|
fi
|
|
6328
|
6328
|
apt-get -y install gnupg
|
|
6329
|
6329
|
|
|
6330
|
|
- BACKUP_KEY_EXISTS=$(su -c "gpg --list-keys \"$MY_EMAIL_ADDRESS (backup key)\"" - $MY_USERNAME)
|
|
|
6330
|
+ BACKUP_KEY_EXISTS=$(gpg --list-keys "$MY_EMAIL_ADDRESS (backup key)")
|
|
6331
|
6331
|
if [ "$?" = "0" ]; then
|
|
6332
|
6332
|
return
|
|
6333
|
6333
|
fi
|
|
|
@@ -6351,17 +6351,30 @@ function configure_backup_key {
|
|
6351
|
6351
|
fi
|
|
6352
|
6352
|
MY_BACKUP_KEY_ID=$(su -c "gpg --list-keys \"$MY_EMAIL_ADDRESS (backup key)\" | grep 'pub '" - $MY_USERNAME | awk -F ' ' '{print $2}' | awk -F '/' '{print $2}')
|
|
6353
|
6353
|
echo "Backup key: $MY_BACKUP_KEY_ID"
|
|
6354
|
|
- MY_BACKUP_KEY=/home/$MY_USERNAME/backup_key.gpg
|
|
6355
|
|
- su -c "gpg --output $MY_BACKUP_KEY --armor --export $MY_BACKUP_KEY_ID" - $MY_USERNAME
|
|
|
6354
|
+ MY_BACKUP_KEY=/home/$MY_USERNAME/backup_key
|
|
|
6355
|
+ su -c "gpg --output ${MY_BACKUP_KEY}_public.asc --armor --export $MY_BACKUP_KEY_ID" - $MY_USERNAME
|
|
|
6356
|
+ su -c "gpg --output ${MY_BACKUP_KEY}_private.asc --armor --export-secret-key $MY_BACKUP_KEY_ID" - $MY_USERNAME
|
|
|
6357
|
+ if [ ! -f ${MY_BACKUP_KEY}_public.asc ]; then
|
|
|
6358
|
+ echo 'Public backup key could not be exported'
|
|
|
6359
|
+ exit 36829
|
|
|
6360
|
+ fi
|
|
|
6361
|
+ if [ ! -f ${MY_BACKUP_KEY}_private.asc ]; then
|
|
|
6362
|
+ echo 'Private backup key could not be exported'
|
|
|
6363
|
+ exit 29235
|
|
|
6364
|
+ fi
|
|
|
6365
|
+
|
|
|
6366
|
+ # import backup key to root user
|
|
|
6367
|
+ gpg --import --import ${MY_BACKUP_KEY}_public.asc
|
|
|
6368
|
+ gpg --allow-secret-key-import --import ${MY_BACKUP_KEY}_private.asc
|
|
6356
|
6369
|
|
|
6357
|
6370
|
if ! grep -q "Backup key" /home/$MY_USERNAME/README; then
|
|
6358
|
6371
|
echo '' >> /home/$MY_USERNAME/README
|
|
6359
|
6372
|
echo '' >> /home/$MY_USERNAME/README
|
|
6360
|
6373
|
echo 'Backup key' >> /home/$MY_USERNAME/README
|
|
6361
|
6374
|
echo '==========' >> /home/$MY_USERNAME/README
|
|
6362
|
|
- echo 'A GPG key has been created which will be used for making backups' >> /home/$MY_USERNAME/README
|
|
6363
|
|
- echo 'This can be found in the home directory (backup_key.gpg).' >> /home/$MY_USERNAME/README
|
|
6364
|
|
- echo 'You should transfer this to somewhere safe so that it can be restored.' >> /home/$MY_USERNAME/README
|
|
|
6375
|
+ echo 'GPG keys have been created which will be used for making backups' >> /home/$MY_USERNAME/README
|
|
|
6376
|
+ echo 'These can be found in the home directory (backup_key_*.asc).' >> /home/$MY_USERNAME/README
|
|
|
6377
|
+ echo 'You should transfer these to somewhere safe so that it can be restored.' >> /home/$MY_USERNAME/README
|
|
6365
|
6378
|
fi
|
|
6366
|
6379
|
chown $MY_USERNAME:$MY_USERNAME /home/$MY_USERNAME/README
|
|
6367
|
6380
|
chmod 600 /home/$MY_USERNAME/README
|
Bob Mottram
9 年之前