duplicity-talk
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Duplicity-talk] Host key authenticity could not be verified

From: Kenneth Loafman
Subject: Re: [Duplicity-talk] Host key authenticity could not be verified
Date: Mon, 24 Sep 2007 07:29:06 -0500
User-agent: Thunderbird 1.5.0.13 (X11/20070824) 
Brandon Keepers wrote:
> On Sep 23, 2007, at 12:44 PM, Kenneth Loafman wrote:
>> Brandon Keepers wrote:
>>> When I try to run duplicity 0.4.4.RC1 to back up my mac, I get this
>>> error:
>>>
>>> Host key authenticity could not be verified (missing known_hosts entry?)
>>> Running 'sftp  address@hidden' failed (attempt #1)
>>>
>>> It will retry 5 times and give up.  Here are the options I'm passing to
>>> duplicity:
>>>
>>> sudo duplicity --allow-source-mismatch \
>>>     --encrypt-key $GPG_KEY --sign-key $GPG_KEY \
>>>     --exclude-device-files --exclude-other-filesystems \
>>>     --exclude-globbing-filelist /etc/duplicity_excludes.txt \
>>>     / scp://address@hidden/backups
>>>
>>> I have an SSH key set up so I don't need a password to log into my
>>> server, and I'm able to just run the sftp command:
>>>
>>> $ sftp  address@hidden
>>> Connecting to 192.168.0.254...
>>> sftp>
>>>
>>> Any ideas?
>>
>> D'oh! (like Homer Simpson)
>>
>> I missed the fact that in the first case you are doing sudo and in the
>> second you are doing it as a normal use.  It won't work that way.  Root
>> is its own user.  You need to either set up root as a key on the remote,
>> or in /root/.ssh/ add a 'config' file with the following lines.
>>
>> IdentityFile /home/user/.ssh/id_rsa
>> IdentityFile /home/user/.ssh/id_dsa
>>
>> where 'user' is your user name.
>>
>> You may also use "--ssh-options="-oIdentityFile=/home/user/.ssh/id_rsa"
>> on the duplicity command line.
> 
> Thanks for the suggestion, but that didn't do it.  I tried changing the
> identity file and running without sudo, both giving me the same "Running
> 'sftp  address@hidden' failed (attempt #1)" error

Unless GPG_KEY is passwordless, the problem is most likely that
duplicity is not asking for a GPG passphrase.  RC1 went overboard in
attempting to restrict password queries.

Please apply the patch that is found at:
https://savannah.nongnu.org/patch/index.php?6218

and let me know how it goes.  If that does not work, try running
duplicity with the-'v9' option and post the results.

...Thanks,
...Ken

Attachment: signature.asc
Description: OpenPGP digital signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]