Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 5 years ago. Improve this question Occasionally I have to install new packages on servers. If I’m lucky, I can find an RPM, otherwise, I get to bang my … Read more
I am trying to install gnuPG pecl module for PHP on a server where multiple PHP versions are install 5.3, 5.6 and 7.0. I was able to just use pecl install gnupg for the base 5.3 install. However when trying to manually phpize and ./configure for the other versions, it never passes the tests. I … Read more
We have a bunch of files that contain sensitive information, that need to be accessed by several teams, but need to be unreadable to everyone else. Currently, each team member needs to generate their own GPG key pair and share their public key with the team. Then whoever has access to the files will add … Read more
I am running a Mail-in-a-Box server on Ubuntu 18.04. As part of the setup/update script, it attempts to execute the command add-apt-repository -y ppa:certbot/certbot. This fails with the following error message: FAILED: add-apt-repository -y ppa:certbot/certbot —————————————– Error: retrieving gpg key timed out. —————————————– When I try to run the command manually, I get the following … Read more
I would like to set up a read-only key-server operating by me where I am going to publish my own keys. So that anyone could do gpg –keyserver example.mymedia.su –receive-keys 0xDEADBEEF and get the key. Is it some sort of HTTP server? Is it enough to just put static files and serve them via Apache? … Read more
To avoid casual mailbox snooping for an IMAP server I am thinking of “transparent encryption” setup that would: Public key encrypt incoming messages at local delivery time Private key decrypt said messages at read time. (Here, the private key password would be one and the same as the mail account password) (see the rationale at … Read more
I have GPG set up to talk to SSH (with –enable-ssh-support). I have two keys: say 0x1234 and 0xABCD. Both keys have the following subkeys: a signing key an encryption key an authentication key Therefore, I have two different public keys when I run ssh-add -L with 0x1234 first followed by 0xABCD (I think this … Read more
For SFTP access to my server, I have created a sftp user that is limited to a working directory by chroot. Match User sftp-user AuthorizedKeysFile /home/sftp-user/.ssh/authorized_keys ChrootDirectory /var/www/domain ForceCommand internal-sftp AllowTcpForwarding no X11Forwarding no And this entry in /etc/passwd sftp-user:x:1003:1003::/html:/usr/sbin/nologin There were some issues with the key file, but setting an absolute path for that … Read more
I’d like to use duplicity to backup files and I’d like to encrypt them with GnuPG. I was wondering why duplicity asks for a passphrase to encrypt the files. For asymmetric encryption the passphrase is only needed for decryption. I was using the following command: duplicity full –encrypt-key=”KEY-ID” –sign-key=”KEY-ID” /path/to/source file://path/to/destination I expected duplicity to … Read more
I have noticed that after installing qTox and its repository, that when running the commands (and it’s either at the end of the first one, or at the beginning of the second one, sorry, but I cannot tell, and it does not happen every time I run them): sudo apt-get update && sudo apt-get dist-upgrade … Read more
