GNUPG install on PFSense
-
I need to install gpg/gnupg on pfsense in order to perform many tasks but I cant seem to find any good guides or docs....pfsense does support gnupg or some other pgp implementation, correct? Could someone help or point me in the right direction?
-
J jimp moved this topic from Problems Installing or Upgrading pfSense Software on
-
There's no easy way to install gpg. There are a lot of dependencies that aren't in our repo so you would need to install them all manually or enable the FreeBSD repo with all risks that brings:
https://docs.netgate.com/pfsense/en/latest/recipes/freebsd-pkg-repo.html#concerns-warningsWhat exactly are you needing to do? In which pfSense version?
Steve
-
@mephmanx said in GNUPG install on PFSense:
in order to perform many tasks
Just curious - what tasks? Are these tasks best done on your firewall?
Been here a long time, and I don't recall ever seeing anyone ask for this before, so curious what tasks. If those tasks are something that makes sense for a firewall, then it could be possible to do a feature request to get it added to pfsense via either built in, or a package and then everyone wanting to do these tasks could benefit.
-
Im not sure if they ake sense for everyone but they make sense for me. I plan on having organization background tasks that are backed by git repos for config and update purposes. I will use PGP generated SSH keys for security and will write a key mgmt process in python (installed, updated, and managed with pip). These keys will also allow access to internal services through the same PGP generated SSH keys. I was able to get GNUPG installed on my pfsense 2.6 installation and so far have no trouble.
-
You might open a feature request for adding that to our repo if you plan to use it going forward:
https://redmine.pfsense.org/ -
@mephmanx said in GNUPG install on PFSense:
organization background tasks that are backed by git repos for config and update purposes.
Why would you do this on the "firewall" wouldn't those make more sense to do on some resource inside the org? What part of the firewalls role do these tasks help with?
Problem I have seen over the years is people think oh well this "box" I have is only using like 3% of its cpu doing its current thing, why not just leverage these unused cycles for doing other than firewall things..
Is that the case here? Do you not have some other resource on your network that could perform these background tasks?
