Re: [Networker] Encrpyption
2008-01-11 08:01:28
On Jan 10, 2008, at 22:08, Stan Horwitz wrote:
What would happen if the only person who knows what the encryption
key is gets struck by lightning after having just changed the key
in NetWorker? Without the key that was used when an encrypted
backup is done, recovering that data would be impossible.
The key(s) could be stored in the /nsr/* files of Networker, and if a
restore is needed (by the administrator or via the user on the client
machine if ACLs allow it), they would be fetched and sent to the tape
drive as needed. No one needs to really know the passwords or keys;
things could be architected to do everything in the background. To
make sure they don't go 'poof', it could be possible to dump them
into a text file via an nsr* command, like the rest of the Networker
configuration.
Google is your friend. My favorite way to do encryption is http://
www.ingrian.com but there are also other options.
Thanks. (I was posting anyway so figured I'd just ask. :)
To sign off this list, send email to listserv AT listserv.temple DOT edu and type
"signoff networker" in the body of the email. Please write to networker-request
AT listserv.temple DOT edu if you have any problems with this list. You can access the
archives at http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
|
|
|