I’m not the expert but got it to work pretty easily using the wiki’s instructions, albeit on RHEL5.

 

In my dumptype I defined:

 

encrypt server

server_encrypt "/usr/sbin/amgpgcrypt"

server_decrypt_option "-d"

 

and .gnupg permissions (apparently these are important to get right) are:

 

-rw------- 1 amandabackup disk 9207 Jul 28 15:28 gpg.conf

-rw------- 1 amandabackup disk  928 Jul 28 15:31 pubring.gpg

-rw------- 1 amandabackup disk  928 Jul 28 15:31 pubring.gpg~

-rw------- 1 amandabackup disk  600 Aug  1 08:59 random_seed

-rw------- 1 amandabackup disk 1065 Jul 28 15:31 secring.gpg

-rw------- 1 amandabackup disk 1280 Jul 28 15:31 trustdb.gpg

 

Maybe that helps?  That’s all I did and it works very well.

 

Are you encrypting on the server or on the client?  My assumption is that the public key needs to exist on the system doing the encrypting.

 

 

I am running Solaris 10 and using amanda for backups. My server is also my client. Regular backup and restores work, amcryptsimple backup and restores work. I am trying to set up amgpgcrypt and it fails. I followed the instruction in the wiki, in fact I had this set up on my old server with no problem but I can’t get it to work here.

 

The email I get from amanda has the error:

X.X.X export/home/pdc/maple lev 0  FAILED [data write: Broken pipe]

 

The amdump.1 file contains the error:

gpg: amanda: skipped: public key not found

gpg: [stdin]: encryption failed: public key not found

 

However, when I run the command, as amanda, gpg --list-keys

 

I get:

 

/export/home/amanda/.gnupg/pubring.gpg

--------------------------------------

pub   1024D/7229A05E 2008-07-31 [expires: 2011-07-31]

uid                  Paul Crittenden (Comment) <paul.crittenden AT simpson DOT edu>

sub   2048g/71773EEB 2008-07-31 [expires: 2011-07-31]

 

Any ideas what I am missing, thanks.

 

Paul Crittenden

Computer Systems Manager

Simpson College

Phone: 515-961-1680

Email: paul.crittenden AT simpson DOT edu