Networker

Re: [Networker] aes asm not working (manaul backup)

2010-02-04 13:48:30
Subject: Re: [Networker] aes asm not working (manaul backup)
From: "STANLEY R. HORWITZ" <stan AT TEMPLE DOT EDU>
To: NETWORKER AT LISTSERV.TEMPLE DOT EDU
Date: Thu, 4 Feb 2010 13:47:06 -0500
On 02 4, 2010, at 2:21 AM, tkimball wrote:
> 
> Yes, recover *should* have given me back a garbage file (when not running 
> under -p), but it did not.
> 
> I had a Sun engineer on the phone yesterday, and through a webex stepped him 
> through my test case (below) on a 'fresh' client.  The test file (in the 
> webex, /etc/inet/hosts) did not recover as garbage when the passphrase was 
> left out.
> 
> Their guess (from the wording in manual) is that aes asm only works for a 
> server-started (savegrp) backup.  Since we're using a client-started backup 
> (save) its not really happening, even though 'save -v' shows the aes asm 
> being used.
> 
> I've asked them to confirm this behavior with EMC.  My personal feeling about 
> this is that its a bug, one that normally does not affect many people.  In 
> our case though, this is a serious problem - over 2/3 of our data backups are 
> client-run.
> 
> The test client used in the webex is group-run, so I left the below /etc/.nsr 
> in place for testing during his next Full backup (over the weekend).
> 
> For now, I'm exploring other options, including pre-crypting the files 
> through our backup script (before save is run). 

NetWorker's aes encryption is good only as a last resort. If you can, why not 
push out your client initiated backups to your NetWorker server via savegrp in 
a shell script. This should get you what you want.

To sign off this list, send email to listserv AT listserv.temple DOT edu and 
type "signoff networker" in the body of the email. Please write to 
networker-request AT listserv.temple DOT edu if you have any problems with this 
list. You can access the archives at 
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER