[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Duplicity-talk] Host key authenticity could not be verified
From: |
Kenneth Loafman |
Subject: |
Re: [Duplicity-talk] Host key authenticity could not be verified |
Date: |
Mon, 24 Sep 2007 07:29:06 -0500 |
User-agent: |
Thunderbird 1.5.0.13 (X11/20070824) |
Brandon Keepers wrote:
> On Sep 23, 2007, at 12:44 PM, Kenneth Loafman wrote:
>> Brandon Keepers wrote:
>>> When I try to run duplicity 0.4.4.RC1 to back up my mac, I get this
>>> error:
>>>
>>> Host key authenticity could not be verified (missing known_hosts entry?)
>>> Running 'sftp address@hidden' failed (attempt #1)
>>>
>>> It will retry 5 times and give up. Here are the options I'm passing to
>>> duplicity:
>>>
>>> sudo duplicity --allow-source-mismatch \
>>> --encrypt-key $GPG_KEY --sign-key $GPG_KEY \
>>> --exclude-device-files --exclude-other-filesystems \
>>> --exclude-globbing-filelist /etc/duplicity_excludes.txt \
>>> / scp://address@hidden/backups
>>>
>>> I have an SSH key set up so I don't need a password to log into my
>>> server, and I'm able to just run the sftp command:
>>>
>>> $ sftp address@hidden
>>> Connecting to 192.168.0.254...
>>> sftp>
>>>
>>> Any ideas?
>>
>> D'oh! (like Homer Simpson)
>>
>> I missed the fact that in the first case you are doing sudo and in the
>> second you are doing it as a normal use. It won't work that way. Root
>> is its own user. You need to either set up root as a key on the remote,
>> or in /root/.ssh/ add a 'config' file with the following lines.
>>
>> IdentityFile /home/user/.ssh/id_rsa
>> IdentityFile /home/user/.ssh/id_dsa
>>
>> where 'user' is your user name.
>>
>> You may also use "--ssh-options="-oIdentityFile=/home/user/.ssh/id_rsa"
>> on the duplicity command line.
>
> Thanks for the suggestion, but that didn't do it. I tried changing the
> identity file and running without sudo, both giving me the same "Running
> 'sftp address@hidden' failed (attempt #1)" error
Unless GPG_KEY is passwordless, the problem is most likely that
duplicity is not asking for a GPG passphrase. RC1 went overboard in
attempting to restrict password queries.
Please apply the patch that is found at:
https://savannah.nongnu.org/patch/index.php?6218
and let me know how it goes. If that does not work, try running
duplicity with the-'v9' option and post the results.
...Thanks,
...Ken
signature.asc
Description: OpenPGP digital signature