Tarsnap - Online backups for the truly paranoid

Navigation menu

Deb packages

This package format is suitable for:

To use this package format:

  1. Initial setup: tell apt-get to trust signed packages from Tarsnap Backup Inc.
  2. Choose one:
    • Binary package: download and install a pre-compiled binary package.
    • Source package: download and compile the source package, then install it.

Initial setup

  1. Get the latest Tarsnap deb packaging key:
    wget https://pkg.tarsnap.com/tarsnap-deb-packaging-key.asc
    Problem? The certificate of ‘pkg.tarsnap.com’ is not trusted
    If you receive the message:
    ERROR: The certificate of ‘pkg.tarsnap.com’ is not trusted.
    ERROR: The certificate of ‘pkg.tarsnap.com’ hasn't got a known issuer.
    Then you likely need to install the ca-certificates package.
  2. Once you are satisfied that the key is correct, add it to your system:
    sudo apt-key add tarsnap-deb-packaging-key.asc
  3. Add the Tarsnap binary package repository to your system:
    echo "deb http://pkg.tarsnap.com/deb/$(lsb_release -s -c) ./" | sudo tee -a /etc/apt/sources.list.d/tarsnap.list
    Problem? lsb_release: command not found
    If you receive the message
    lsb_release: command not found
    then you may either:
    1. Install the lsb-release package, delete the incomplete line from /etc/apt/sources.d/tarsnap.list and re-run the command.
    2. Manually enter a directory name for your distribution.
    Problem? The repository doesn't seem to exist

    Assuming that this is not a temporary network problem, you may be running a distribution release that is not included in our list. Our directory structure supplies the following releases:

    Distribution Directory Package compiled on
    Debian 7 wheezy wheezy
    Debian 8 jessie wheezy
    Debian 9 stretch stretch
    Debian unstable sid stretch
    Ubuntu 12.04 precise precise
    Ubuntu 14.04 trusty wheezy
    Ubuntu 16.04 xenial wheezy
    Ubuntu 18.04 bionic wheezy
    Mint 13 maya wheezy
    Mint 17 qiana wheezy
    Mint 17.1 rebecca wheezy
    Mint 17.2 rafaela wheezy
    Mint 17.3 rosa wheezy
    Mint 18 sarah wheezy
    Mint 18.1 serena wheezy
    Mint 18.2 sonya wheezy
    Mint 18.3 sylvia wheezy
    ElementaryOS 0.3 freya wheezy
    ElementaryOS 0.4 loki wheezy
    If you are running a different Debian-based distribution, try using:
    deb http://pkg.tarsnap.com/deb/wheezy ./
    and if that fails, try:
    deb http://pkg.tarsnap.com/deb/stretch ./
    If neither option works, please contact us at pkg-deb@tarsnap.com.
  4. Update your package database:
    sudo apt-get update

Tarsnap binary package

We currently provide binaries for i386 and amd64. If you are using another architecture (such as ARM or MIPS), then please follow the Tarsnap source package instructions.
  1. Once you have completed the initial setup, run:
    sudo apt-get install tarsnap
  2. (optional) The tarsnap binary package looks for a config file called /etc/tarsnap.conf, whereas the client built from the source tarball looks in /usr/local/etc/tarsnap.conf. If you have an existing Tarsnap config file, you may wish to:
    sudo mv /usr/local/etc/tarsnap.conf /etc/

Tarsnap source package

Most users will not need to use the source package; it is provided for:
  • Systems with a CPU architecture other than i386 or amd64.
  • "Truly paranoid" users who want to check exactly what is being compiled.

Tarsnap source package setup

  1. If you have not done so already, install the package signing key:
    sudo apt-get install tarsnap-archive-keyring
  2. Add the source repository:
    echo "deb-src http://pkg.tarsnap.com/deb-src ./" | sudo tee -a /etc/apt/sources.list.d/tarsnap.list
  3. Update your package database:
    sudo apt-get update
  4. Import the public key to the appropriate keyring so that the source package will be accepted by your non-root user:
    gpg --no-default-keyring --keyring trustedkeys.gpg \
        --import /usr/share/keyrings/tarsnap-archive-keyring.gpg

Tarsnap source package building

  1. Download the source, build it, and install:
    sudo apt-get build-dep tarsnap
    apt-get source -b tarsnap
    sudo dpkg -i tarsnap_*.deb
  2. (optional) If you would like to verify the signatures manually, you probably want to install the signature to your regular gpg keyring (in addition to the gpgv keyring that was configured in step 4).
    gpg --import /usr/share/keyrings/tarsnap-archive-keyring.gpg
    gpg --import /usr/share/keyrings/tarsnap-code-signing-keyring.gpg