Backups with gpg encryption

# As root
gpg --gen-key
gpg --export-secret-keys --armor root@host.example.com > root-privkey.asc

# copy root-privkey.asc to a safe place non-online place

# export the public key for encrypting and signing
gpg --export --armor root@host.example.com > /tmp/root-pubkey.asc

# import the key into the backup creator's key ring
gpg --import  /tmp/root-pubkey.asc
gpg --edit-key root@host.example.com
## sign it
## trust it ultimately

# modify the backup script to pipe through gpg
gtar --totals --bzip2 --create --exclude=Favicons ..... | gpg --encrypt --recipient root@host.example.com > real.backup.filename.here.bz2.gpg

Comments

Post a Comment

Popular posts from this blog

YAML Syntax Highlighting in gedit

Reference URLS: http://blog.dentcat.com/2009/09/highlighting-yaml-in-gedit_02.html http://codesauce.com/posts/gedit3-yaml-syntax-highlighting/ http://superuser.com/questions/353391/custom-gedit-syntax-highlighting-for-dummies sudo yum install subversion cd /tmp && svn checkout http://masood.googlecode.com/svn/trunk/yaml-language-spec/ cd yaml-language-spec/ sudo cp yaml.lang /usr/share/gtksourceview-3.0/language-specs/ sudo chmod 644 /usr/share/gtksourceview-3.0/language-specs/yaml.lang
Read more

Xubuntu Home Server on Dell XPS 13 9370

[ General warning, this isn't a newbie or step-by-step instruction on how to do this.  If you follow this blindly or don't know what a command does you might wipe something value on your system] Introduction I picked up this box through the Dell Outlet for working remotely, but not at home.  It functions okay for that task but I'm in need of a new home server to replace my old Alienware 14 R2 ancient box. Introduction Before Xubuntu 20.04 Installation BIOS Changes Make Bitwise Factory Backup Fresh Xubuntu Installation Zero out the harddrive Install Xubuntu Install latest updates System Configuration LUKS + PAM home directory Boot Xubuntu Live Image & Prepare new partition Create new user with admin privileges Configure PAM mount for primary user Install Software APT Repository Non APT Golang Google Chrome Configuration BIND PIN Entry Nginx + GIT docker XPS 13 9370 Clickpad Buttons Postfix via Gmail ZRam RamDisk Rsyslog Before Xubuntu 20.04 Installation BIOS Changes Acce...
Read more

Cygwin + syslog-ng

Until I can get a real workstation at work and get off this winblows, Cygwin is my friend.  I am working on some OO programming with PERL and really need to be able to log syslog messages locally. After installing syslog-ng, I couldn't figure out how to run it, till I stumbled on a page that mentioned the syslogd-config command. Initially I had some problems because the /etc/passwd and /etc/group files were not world readable (don't know if that is a side effect of the Legato restore of my laptop or just the default behavior) however a quick " chmod a+r /etc/passwd /etc/group " seemed to help. running syslogd-config yielded this output: > syslogd-ng-config Creating default /etc/syslog-ng.conf file Warning: The syslogd service is already installed.  You can not run both, syslogd and syslog-ng in parallel. Do you want to deinstall the syslogd service in favor of syslog-ng? (yes/no) yes Warning: The following function requires administrator privileg...
Read more