duplicity-talk
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Duplicity-talk] Integrity check

From: Kenneth Loafman
Subject: Re: [Duplicity-talk] Integrity check
Date: Thu, 17 Sep 2009 11:49:12 -0500
User-agent: Thunderbird 2.0.0.23 (X11/20090817) 
Jacob Godserv wrote:
> On Thu, Sep 17, 2009 at 06:42,  <address@hidden> wrote:
>> Jacob, unfortunately the script will not know about deleted chains. How do
>> you deal with that?
>> And didn't Ken wrote that there are checksums in the manifest files?
> 
> I do not recall. What I do know is that duplicity verify runs slower
> than 'sha512sum -c' does. If duplicity adds an integrity-check
> command, then that might make my script obsolete.

Been following this and my point is simple, duplicity never assumes that
it can run anything on the remote machine.  If you have that ability,
then running a gpg --verify on the signed files is easy enough,
otherwise, a full download is needed to do essentially the same thing.

There is a hash in the manifest for the volume files.  It's a simple
check that duplicity does to verify that the volume is not corrupt,
SHA1, or MD5, is all we use at the moment.

...Ken

Attachment: signature.asc
Description: OpenPGP digital signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]