encryption with 2.5.0b2

Subject:	encryption with 2.5.0b2
From:	Josef Wolf <jw AT raven.inka DOT de>
To:	amanda-users AT amanda DOT org
Date:	Wed, 22 Feb 2006 23:46:03 +0100

Hello!

Now that 2.5.0b2 seems to run pretty stable, I'd like to try the new
encryption functionality.  I've read wiki.zmanda.com/index.php/Encryption,
but have still some questions:

- What is the point to uuencode and encrypt (with gpg) random data to
  generate the key?  Since the passphrase is stored on the same host,
  protecting the key with the passprase is not of much use (IMHO).

- Why using aespipe at all?  Is there any reason not to use gpg?
  AFAICS, aespipe introduces only an additinal layer of complexity.

- Since the server says whether/which encryption is to be used, the
  server can request unencrypted backups from the client.  This
  implies that the server has to be trusted.

Comments?

<Prev in Thread]	Current Thread	[Next in Thread>
encryption with 2.5.0b2, Josef Wolf <= Re: encryption with 2.5.0b2, Kevin Till Re: encryption with 2.5.0b2, Josef Wolf Re: encryption with 2.5.0b2, Kevin Till Re: encryption with 2.5.0b2, Jon LaBadie Re: encryption with 2.5.0b2, Kevin Till

Previous by Date:	Re: Release of amanda-2.5.0b2, Josef Wolf
Next by Date:	Re: Release of amanda-2.5.0b2, Jon LaBadie
Previous by Thread:	amcheck loocup problems, Glenn English
Next by Thread:	Re: encryption with 2.5.0b2, Kevin Till
Indexes:	[Date] [Thread] [Top] [All Lists]