diff options
author | Sean Whitton <spwhitton@spwhitton.name> | 2016-10-22 17:38:44 -0700 |
---|---|---|
committer | Sean Whitton <spwhitton@spwhitton.name> | 2016-10-22 17:38:44 -0700 |
commit | 64f2627948f1de6aac350f44a90f8a748dc730c3 (patch) | |
tree | 875403091e6e734b3dddb928b5fd2f839d02a948 /debian | |
parent | 38996f22a0ac65b8abadf80f3d8dc37975104a82 (diff) | |
download | keysafe-64f2627948f1de6aac350f44a90f8a748dc730c3.tar.gz |
don't nuke /var/lib/keysafe
Diffstat (limited to 'debian')
-rwxr-xr-x[-rw-r--r--] | debian/keysafe-server.postrm | 20 |
1 files changed, 12 insertions, 8 deletions
diff --git a/debian/keysafe-server.postrm b/debian/keysafe-server.postrm index c141548..0928c91 100644..100755 --- a/debian/keysafe-server.postrm +++ b/debian/keysafe-server.postrm @@ -6,11 +6,15 @@ set -e #DEBHELPER# -# on a package purge, we nuke the keysafe user and the store of -# shards. Note that it would be a security risk to delete the user -# without also deleting the store of shards, so we leave both the user -# and the store intact when the package is merely removed -if [ "$1" = "purge" ]; then - userdel --remove _keysafe || true - groupdel _keysafe || true -fi +# For the time being, we don't ever delete /var/lib/keysafe, even on a +# purge (note that for security this requires that we also never +# delete the _keysafe user and group) + +# Deleting this data has the potential to destroy the backups of +# people's private keys, so it probably shouldn't ever happen +# automatically + +#if [ "$1" = "purge" ]; then +# userdel --remove _keysafe || true +# groupdel _keysafe || true +#fi |