latest

2020-02-15 13:38:59 -08:00
parent 3f91b5cce0
commit e50f689576
15 changed files with 1120 additions and 41 deletions
--- a/bin/detachsign-file
+++ b/bin/detachsign-file
@@ -2,4 +2,4 @@

 SNEAK_KEY_ID="5539AD00DE4C42F3AFE11575052443F4DF2A55C2"

-gpg -u $SNEAK_KEY_ID -a --detach-sig $*
+gpg -u $SNEAK_KEY_ID -a --detach-sig "$*"
--- a/bin/encrypt-for-sneak-ascii
+++ b/bin/encrypt-for-sneak-ascii
@@ -0,0 +1,39 @@
+#!/bin/bash
+
+set -x
+
+KEYSERVER="hkps.pool.sks-keyservers.net"
+#KEYSERVER="pgp.mit.edu"
+
+KEYS=""
+KEYS+=" 5539AD00DE4C42F3AFE11575052443F4DF2A55C2" #sneak@sneak.berlin
+KEYS+=" FF2530A4F3F152E8865FC17CA833B7CE3F2CC6FC" #JP Yubi 6192
+KEYS+=" 078BBD04FBE35D665180EF8A476509F749BFD1AD" #JP Yubi 2811
+KEYS+=" 7D1123A022FC90DF389EC65F233196C180B1C28F" #JP Yubi 6643
+KEYS+=" F5A3A83B9E65EA3E1A2A48E5FDA763BDDCFAB8AC" #Yubikey 4928206 20160927
+KEYS+=" B044B27DCB86641AFE3AB274779D07C54EB7CF85" #Yubikey 4953582 20160927
+#KEYS+=" 3FF8DE63855070F8B9CB0D9A67B4CD26470681DA" #Yubikey 4CNano 06931602 20171018
+
+KEYS+=" 1CA168D7E842DFD1745815006F291E6D9AA87738"
+KEYS+=" 726D577AFB82E64049B62A8DA763B92AD841A706" # Yubi 7192344 20180613 pris
+KEYS+=" 04630E42D244BC80717D28D51280F730A9AD633C"
+KEYS+=" 5D48805E38B8C2E04103C7728CBD64834BC043EA"
+KEYS+=" 8904EE6400E7B7409CE00AA92084C4563F360B45"
+KEYS+=" FE65DB157D8BF9E4FEDF50DA927353E2C4507A5B"
+KEYS+=" 27CF8E00190D7AF340D8AE55A6C1C5C2083CB579"
+
+GARGS=""
+GARGS+=" -a"
+GARGS+=" --trust-model always"
+#GARGS+=" --compress-algo bzip2"
+GARGS+=" --compress-algo none"
+#GARGS+=" --bzip2-compress-level 9"
+
+for KEY in $KEYS ; do
+    if ! gpg --list-key $KEY 2>&1 > /dev/null ; then
+	    gpg --recv-key --keyserver $KEYSERVER $KEY
+    fi
+    GARGS+=" -r $KEY"
+done
+
+gpg $GARGS --encrypt "$*"
--- a/bin/unlock-las1
+++ b/bin/unlock-las1
@@ -1,10 +0,0 @@
-#!/bin/bash
-
-KEYFILE="$HOME/Documents/sync/secrets/luks/las1.eeqj.de.luks.txt.gpg"
-
-if [[ ! -e "$KEYFILE" ]]; then
-    echo "wrong box!" >> /dev/stderr
-    exit 1
-fi
-
-gpg -d "$KEYFILE" | ssh root@las1.local "bash /root/unlock_disks"
--- a/bin/unlock-syncpi-alpha
+++ b/bin/unlock-syncpi-alpha
@@ -1,10 +0,0 @@
-#!/bin/bash
-
-KEYFILE="$HOME/Documents/sync/secrets/luks/syncpi-las1-alpha.luks.gpg"
-
-if [[ ! -e "$KEYFILE" ]]; then
-    echo "wrong box!" >> /dev/stderr
-    exit 1
-fi
-
-gpg -d "$KEYFILE" | ssh root@syncpi-las1-alpha.local "bash /root/unlock_disks"
--- a/bin/unlock-syncpi-bravo
+++ b/bin/unlock-syncpi-bravo
@@ -1,10 +0,0 @@
-#!/bin/bash
-
-KEYFILE="$HOME/Documents/sync/secrets/luks/syncpi-las1-bravo.luks.gpg"
-
-if [[ ! -e "$KEYFILE" ]]; then
-    echo "wrong box!" >> /dev/stderr
-    exit 1
-fi
-
-gpg -d "$KEYFILE" | ssh root@syncpi-las1-bravo.local "bash /root/unlock_disks"
--- a/bin/unlock-syncpi-las2
+++ b/bin/unlock-syncpi-las2
@@ -1,10 +0,0 @@
-#!/bin/bash
-
-KEYFILE="$HOME/Documents/sync/secrets/luks/syncpi-las2.luks.txt.gpg"
-
-if [[ ! -e "$KEYFILE" ]]; then
-    echo "wrong box!" >> /dev/stderr
-    exit 1
-fi
-
-gpg -d "$KEYFILE" | ssh root@syncpi-las2.tor "bash /root/unlock_disks"