I’m not the expert but got it to work pretty easily using the wiki’s instructions, albeit on RHEL5.
In my dumptype I defined:
encrypt server
server_encrypt "/usr/sbin/amgpgcrypt"
server_decrypt_option "-d"
and .gnupg permissions (apparently these are important to get right) are:
-rw------- 1 amandabackup disk 9207 Jul 28 15:28 gpg.conf
-rw------- 1 amandabackup disk 928 Jul 28 15:31 pubring.gpg
-rw------- 1 amandabackup disk 928 Jul 28 15:31 pubring.gpg~
-rw------- 1 amandabackup disk 600 Aug 1 08:59 random_seed
-rw------- 1 amandabackup disk 1065 Jul 28 15:31 secring.gpg
-rw------- 1 amandabackup disk 1280 Jul 28 15:31 trustdb.gpg
Maybe that helps? That’s all I did and it works very well.
Are you encrypting on the server or on the client? My assumption is that the public key needs to exist on the system doing the encrypting.
From: owner-amanda-users AT amanda DOT org [mailto:owner-amanda-users AT amanda DOT org] On Behalf Of Paul Crittenden
Sent: 31 July 2008 18:41
To: amanda-users AT amanda DOT org
Subject: gpg emcryption
I am running Solaris 10 and using amanda for backups. My server is also my client. Regular backup and restores work, amcryptsimple backup and restores work. I am trying to set up amgpgcrypt and it fails. I followed the instruction in the wiki, in fact I had this set up on my old server with no problem but I can’t get it to work here.
The email I get from amanda has the error:
X.X.X export/home/pdc/maple lev 0 FAILED [data write: Broken pipe]
The amdump.1 file contains the error:
gpg: amanda: skipped: public key not found
gpg: [stdin]: encryption failed: public key not found
However, when I run the command, as amanda, gpg --list-keys
I get:
/export/home/amanda/.gnupg/pubring.gpg
--------------------------------------
pub 1024D/7229A05E 2008-07-31 [expires: 2011-07-31]
uid Paul Crittenden (Comment) <paul.crittenden AT simpson DOT edu>
sub 2048g/71773EEB 2008-07-31 [expires: 2011-07-31]
Any ideas what I am missing, thanks.
Paul Crittenden
Computer Systems Manager
Simpson College
Phone: 515-961-1680
Email: paul.crittenden AT simpson DOT edu