Merge pull request #8071 from ThomasWaldmann/init-message-1.4

init: improve message (1.4-maint)
2026-06-08 16:23:42 -04:00 · 2024-02-01 17:24:15 +01:00 · 2024-02-01 17:24:15 +01:00 · 6221de8cbb
commit 6221de8cbb
parent ad44430b2a fb44fb5011
1 changed files with 12 additions and 13 deletions
--- a/src/borg/archiver.py
+++ b/src/borg/archiver.py
@ -318,24 +318,23 @@ class Archiver:
        if key.tam_required:
            tam_file = tam_required_file(repository)
            open(tam_file, 'w').close()
-            logger.warning(
-                '\n'
-                'By default repositories initialized with this version will produce security\n'
-                'errors if written to with an older version (up to and including Borg 1.0.8).\n'
-                '\n'
-                'If you want to use these older versions, you can disable the check by running:\n'
-                'borg upgrade --disable-tam %s\n'
-                '\n'
-                'See https://borgbackup.readthedocs.io/en/stable/changes.html#pre-1-0-9-manifest-spoofing-vulnerability '
-                'for details about the security implications.', shlex.quote(path))

        if key.NAME != 'plaintext':
            logger.warning(
                '\n'
                'IMPORTANT: you will need both KEY AND PASSPHRASE to access this repo!\n'
-                'If you used a repokey mode, the key is stored in the repo, but you should back it up separately.\n'
-                'Use "borg key export" to export the key, optionally in printable format.\n'
-                'Write down the passphrase. Store both at safe place(s).\n')
+                '\n'
+                'Key storage location depends on the mode:\n'
+                '- repokey modes: key is stored in the repository directory.\n'
+                '- keyfile modes: key is stored in the home directory of this user.\n'
+                '\n'
+                'For any mode, you should:\n'
+                '1. Export the borg key and store the result at a safe place:\n'
+                '   borg key export           REPOSITORY encrypted-key-backup\n'
+                '   borg key export --paper   REPOSITORY encrypted-key-backup.txt\n'
+                '   borg key export --qr-html REPOSITORY encrypted-key-backup.html\n'
+                '2. Write down the borg key passphrase and store it at safe place.\n'
+            )

    @with_repository(exclusive=True, manifest=False)
    def do_check(self, args, repository):