duplicity-talk
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Duplicity-talk] Integrity check

From: edgar . soldin
Subject: Re: [Duplicity-talk] Integrity check
Date: Thu, 17 Sep 2009 23:37:24 +0200
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.1) Gecko/20090715 Thunderbird/3.0b3 


But you would catch that during a verify run, wouldn't you? In essence you


yeah, but with unnecessary computing and too much output.


simply propose to leave away the last step of verify, right? Should be simple
enough to implement...


exactly my point ...


Decrypting it on the remote really is silly but gpg --verify would have its
uses.
unfortunately my tests showed that a encrypted signed gpg file can't be verified by 'gpg --verify'. This only works for detached signatures. You actually have to decrypt it for that purpose. And therefor you will need your most valuable gpg data (keys,passphrases) on the remote machine. Again. I wouldn't put them on a non trusted system. 


It may not necessarily a slow rather than an expensive line. Think non-flatrate
The reason why I started thinking of it was ... Let's say I want to remove the incrementals of the last month and start with a fresh set of incrementals against my old full. Don't I want to make sure that this old full is still intact? So actually I think integrity checking is done seldom but needed in some cases. 


... ede
reply via email to
[Prev in Thread] Current Thread [Next in Thread]