[Popcon-developers] Encrypted popcon submissions
Daniel Leidert
daniel.leidert at wgdd.de
Fri Jul 12 12:39:18 UTC 2013
Am Freitag, den 12.07.2013, 14:05 +0200 schrieb Bill Allombert:
> On Thu, Jul 11, 2013 at 05:15:58PM +0200, Daniel Leidert wrote:
> > Am Donnerstag, den 11.07.2013, 15:33 +0200 schrieb Bill Allombert:
> >
> > [use gpg but don't write to root/.gnupg]
> > > Below is the code in /etc/cron.daily/popularity-contest
> > >
> > > GPG=/usr/bin/gpg
> > > if [ "$ENCRYPT" = "yes" ] && [ -x "$GPG" ]; then
> > > POPCONGPG="$POPCON.gpg"
> > > rm -f "$POPCONGPG"
> > > $GPG --no-default-keyring --keyring "$KEYRING" --trust-model=always \
> > > --armor -o "$POPCONGPG" -r "$POPCONKEY" --encrypt "$POPCON"
> > > POPCON="$POPCONGPG"
> > > fi
> >
> > I suggest you add trustdb.gpg and secring.gpg
> > to /usr/share/popularity-contest/ or (maybe even
> > better) /etc/popularity-contest/. apt(-secure) does similar in /etc/apt.
>
> > JFTR: The file secring.gpg can be avoided using
> > --secret-keyring=/dev/null but I don't know how to suppress the creation
> > of trustdb.gpg.
>
> Well yes, but creating empty, dummy trustdb.gpg and secring.gpg is precisely
> what I tried to avoid. Does --homedir=/dev/null would work ?
Nope, not that I know. You probably need a writable location for
trustdb.gpg [1] and /dev/null is not. You might ask on the gpg lists.
What about you create a temporary directory in TMPDIR, use it via
--homedir and delete it after usage?
[1] http://bugs.debian.org/619558
Regards, Daniel
More information about the Popcon-developers
mailing list