[Popcon-developers] Encrypted popcon submissions

Bill Allombert Bill.Allombert at math.u-bordeaux1.fr
Fri Jul 12 12:05:26 UTC 2013


On Thu, Jul 11, 2013 at 05:15:58PM +0200, Daniel Leidert wrote:
> Am Donnerstag, den 11.07.2013, 15:33 +0200 schrieb Bill Allombert:
> 
> [use gpg but don't write to root/.gnupg]
> > Below is the code in /etc/cron.daily/popularity-contest
> > 
> > GPG=/usr/bin/gpg
> > if [ "$ENCRYPT" = "yes" ] && [ -x "$GPG" ]; then
> >   POPCONGPG="$POPCON.gpg"
> >   rm -f "$POPCONGPG"
> >   $GPG --no-default-keyring --keyring "$KEYRING" --trust-model=always \
> >        --armor -o "$POPCONGPG" -r "$POPCONKEY" --encrypt "$POPCON"
> >   POPCON="$POPCONGPG"
> > fi
> 
> I suggest you add trustdb.gpg and secring.gpg
> to /usr/share/popularity-contest/ or (maybe even
> better) /etc/popularity-contest/. apt(-secure) does similar in /etc/apt.

> JFTR: The file secring.gpg can be avoided using
> --secret-keyring=/dev/null but I don't know how to suppress the creation
> of trustdb.gpg.

Well yes, but creating empty, dummy trustdb.gpg and secring.gpg is precisely
what I tried to avoid. Does --homedir=/dev/null would work ?

Cheers,
Bill.



More information about the Popcon-developers mailing list