|
|
@@ -730,20 +730,22 @@ function create_restore_script {
|
|
730
|
730
|
echo 'fi' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
731
|
731
|
echo '' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
732
|
732
|
|
|
733
|
|
- echo "if [ -f $USB_MOUNT/backup/key.gpg ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
734
|
|
- echo " if [ -f $BACKUP_CERTIFICATE.new ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
735
|
|
- echo " rm $BACKUP_CERTIFICATE.new" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
736
|
|
- echo ' fi' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
737
|
|
- echo " cp $USB_MOUNT/backup/key.gpg /root/tempbackupkey.gpg" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
738
|
|
- echo " gpg /root/tempbackupkey.gpg" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
739
|
|
- echo " if [ -f /root/tempbackupkey ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
740
|
|
- echo ' echo "Backup key decrypted"' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
741
|
|
- echo " cp /root/tempbackupkey $BACKUP_CERTIFICATE" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
742
|
|
- echo " shred -zu /root/tempbackupkey" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
743
|
|
- echo " chmod 400 $BACKUP_CERTIFICATE" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
744
|
|
- echo ' else' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
745
|
|
- echo ' echo "Unable to decrypt the backup key"' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
746
|
|
- echo ' exit 735' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
733
|
+ echo "if [ ! -f $BACKUP_CERTIFICATE ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
734
|
+ echo " if [ -f $USB_MOUNT/backup/key.gpg ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
735
|
+ echo " if [ -f $BACKUP_CERTIFICATE.new ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
736
|
+ echo " rm $BACKUP_CERTIFICATE.new" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
737
|
+ echo ' fi' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
738
|
+ echo " cp $USB_MOUNT/backup/key.gpg /root/tempbackupkey.gpg" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
739
|
+ echo " gpg /root/tempbackupkey.gpg" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
740
|
+ echo " if [ -f /root/tempbackupkey ]; then" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
741
|
+ echo ' echo "Backup key decrypted"' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
742
|
+ echo " cp /root/tempbackupkey $BACKUP_CERTIFICATE" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
743
|
+ echo " shred -zu /root/tempbackupkey" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
744
|
+ echo " chmod 400 $BACKUP_CERTIFICATE" >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
745
|
+ echo ' else' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
746
|
+ echo ' echo "Unable to decrypt the backup key"' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
747
|
+ echo ' exit 735' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
748
|
+ echo ' fi' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
747
|
749
|
echo ' fi' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
748
|
750
|
echo 'fi' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
749
|
751
|
echo '' >> /usr/bin/$RESTORE_SCRIPT_NAME
|
|
|
@@ -1086,15 +1088,6 @@ function restore_from_friend {
|
|
1086
|
1088
|
echo 'SERVER_NAME=$1' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1087
|
1089
|
echo '' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1088
|
1090
|
|
|
1089
|
|
- echo '# Check that a backup key exists' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1090
|
|
- echo 'if [ ! -f /root/backupkey ]; then' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1091
|
|
- echo ' echo "No backup key was found in /root/backupkey"' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1092
|
|
- echo ' exit 84' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1093
|
|
- echo 'fi' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1094
|
|
- echo '' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1095
|
|
-
|
|
1096
|
|
- echo 'PASSPHRASE=$(</root/backupkey)' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1097
|
|
- echo '' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1098
|
1091
|
echo 'if [ ! $SERVER_NAME ]; then' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1099
|
1092
|
echo " echo '$RESTORE_FROM_FRIEND_SCRIPT_NAME [server]'" >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1100
|
1093
|
echo ' exit 1' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
@@ -1117,6 +1110,13 @@ function restore_from_friend {
|
|
1117
|
1110
|
echo "$FRIENDS_SERVERS_LIST | awk -F ' ' '{print $2}')" >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1118
|
1111
|
echo '' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1119
|
1112
|
|
|
|
1113
|
+ echo '# Check that a backup key exists' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
1114
|
+ echo 'if [ ! -f $BACKUP_CERTIFICATE ]; then' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
1115
|
+ echo " echo 'No backup key was found in $BACKUP_CERTIFICATE'" >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
1116
|
+ echo ' exit 84' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
1117
|
+ echo 'fi' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
1118
|
+ echo '' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
|
1119
|
+
|
|
1120
|
1120
|
echo 'echo "Restoring certificates"' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1121
|
1121
|
echo "rsyncrypto -d -r scp://$SERVER/backup/ssl /etc/ssl scp://$SERVER/backup/ssl.keys $BACKUP_CERTIFICATE" >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
|
1122
|
1122
|
echo '' >> /usr/bin/$RESTORE_FROM_FRIEND_SCRIPT_NAME
|
Bob Mottram
10 anos atrás