Review your favorite Linux distribution.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 12-11-2010, 01:32 PM   #1
Registered: Jul 2010
Distribution: openSUSE 11.4
Posts: 33

Rep: Reputation: Disabled
GPG subkeys in keychain confusion (also duplicity)


I'm trying to automate my backup system (using duplicity).
The problem is, I add my gpg key to the keychain during startup, it asks for passphrase, everything is ok.
The key itself has two subkeys:
pub  2048R/D4C3EE31  created: 2010-09-14  expires: 2011-04-30  usage: SC  
                     trust: ultimate      validity: ultimate
sub  2048R/BE994706  created: 2010-09-14  expires: 2011-04-30  usage: E
Then I run duplicity with --encrypt-key option, choosing which key to use for encryption: D4C3EE31
duplicity --encrypt-key D4C3EE31 /dir-to-backup /target-dir
But - if an archive already exists, it tries to decrypt it and asks for passphrase, if not given any returns an error message like this:
===== Begin GnuPG log =====
gpg: encrypted with 2048-bit RSA key, ID BE994706, created 2010-09-14
"existence.unreliable <>"
gpg: public key decryption failed: Bad passphrase
gpg: decryption failed: No secret key
===== End GnuPG log =====
Tried adding the BE994706 key to the keychain too - the result is the same.
So... I understand that there are two subkeys in my gpg key: one for signing, one for encryption. Does keychain treat them separately, caching only the signing one? If so, how can I cache the encryption key?

Sorry for the incoherence, I'm quite a bit confused about this whole multiple keys matter.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
gpg / gpg-agent -- Can't connect to /root/.gnupg/S.gpg-agent jrtayloriv Linux - Security 9 06-03-2019 10:06 AM
[SOLVED] gpg: WARNING: unsafe permissions on configuration file `/home/b/.gnupg/options' gpg: widda Mandriva 9 07-30-2018 07:49 AM
yum not seeing duplicity Zeno McDohl Linux - Newbie 5 08-06-2009 06:04 PM
GPG: Bad session key gpg between gpg on linux and gpg gui on windows XP konqi Linux - Software 1 07-21-2009 09:37 AM
GPG / PGP subkeys wwnexc Linux - Security 1 05-21-2006 01:54 PM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:57 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration