[GH-ISSUE #209] Sign bastion backup files #55

New issue

Closed

opened 2026-05-07 00:18:12 +02:00 by BreizhHardware · 2 comments

BreizhHardware commented 2026-05-07 00:18:12 +02:00

Owner

Copy link

Originally created by @ghost on GitHub (Jun 28, 2021).
Original GitHub issue: https://github.com/ovh/the-bastion/issues/209

We are using the script osh-backup-acl-keys.sh to backup the configuration to a remote system. Although the backup files are encrypted, they are not signed. It would be useful to have them signed the same way as the session recordings (ttyrec) are by default when syncing them to a remote system.

Originally created by @ghost on GitHub (Jun 28, 2021). Original GitHub issue: https://github.com/ovh/the-bastion/issues/209 We are using the script osh-backup-acl-keys.sh to backup the configuration to a remote system. Although the backup files are encrypted, they are not signed. It would be useful to have them signed the same way as the session recordings (ttyrec) are by default when syncing them to a remote system.

BreizhHardware 2026-05-07 00:18:12 +02:00

• closed this issue
• added the
  enhancement
  label

BreizhHardware commented 2026-05-07 00:18:13 +02:00

Author

Owner

Copy link

@speed47 commented on GitHub (Jun 28, 2021):

Hello,

The ttyrec files are encrypted with the admins gpg keys, and signed with the bastion's gpg key, but you're right, backups are not signed. This should be easy to add! Thanks for the suggestion.

<!-- gh-comment-id:869738177 --> @speed47 commented on GitHub (Jun 28, 2021): Hello, The ttyrec files are encrypted with the admins gpg keys, and signed with the bastion's gpg key, but you're right, backups are not signed. This should be easy to add! Thanks for the suggestion.

BreizhHardware commented 2026-05-07 00:18:14 +02:00

Author

Owner

Copy link

@speed47 commented on GitHub (Oct 20, 2021):

Implemented in v3.05.01

<!-- gh-comment-id:947641446 --> @speed47 commented on GitHub (Oct 20, 2021): Implemented in v3.05.01

BreizhHardware referenced this issue 2026-05-07 00:19:46 +02:00

[PR #55] [MERGED] feat: add interactiveModeByDefault option #199

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

expifix

groupcreate_fix_uid

fix_group_gid_fast

gh-pages

clush

expiration

jsonvalidator

v3.23.01

v3.23.00

v3.22.00

v3.21.00

v3.20.00

v3.19.01

v3.19.00

v3.18.99-rc1

v3.18.00

v3.17.01

v3.17.00

v3.16.99-rc3

v3.16.99-rc2

v3.16.99-rc1

v3.16.01

v3.16.00

v3.15.00

v3.14.16

v3.14.15

v3.14.00

v3.13.01

v3.13.00

v3.12.00

v3.11.02

v3.11.01

v3.11.00

v3.10.00

v3.09.02

v3.09.00-really

v3.09.00

v3.09.00-rc3

v3.09.00-rc2

v3.09.00-rc1

v3.08.01

v3.08.00

v3.07.00

v3.06.00

v3.05.01

v3.05.00

v3.04.00

v3.03.99-rc2

v3.03.99-rc1

v3.03.01

v3.03.00

v3.02.00

v3.01.99-rc4

v3.01.99-rc3

v3.01.99-rc2

v3.01.99-rc1

v3.01.03

v3.01.02

v3.01.01

v3.01.00

v3.00.02

v3.00.01

v3.00.00

Labels

Clear labels   

answered

  

bug

  

documentation

  

enhancement

  

enhancement

  

feature

  

feature

  

kept-open-for-info

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

answered

bug

documentation

enhancement

enhancement

feature

feature

kept-open-for-info

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/the-bastion#55

No description provided.