[geeks] security-conscious backup
David L Kindred (Dave)
d.kindred at telesciences.com
Wed Jul 27 12:20:32 CDT 2005
>>>>> "Geoffrey" == Geoffrey S Mendelson <gsm at mendelson.com> writes:
<chomp>
Geoffrey> find <sourcedirectory> -exec cat {} \| openssl enc -des3
Geoffrey> -k <keyfile>
Geoffrey> \| gzip -c -9 > /backupdirectory/{} \;
<chomp>
Geoffrey> The order was picked so that you could use standard gzip
Geoffrey> tools on the files without have the ability to read them.
That would assume that disclosure of the file and/or directory names
themselves is not an issue. If, for example, there were per-customer
directories named after the customer then you would want the directory
information encrypted also.
--
David L. Kindred
Unix Systems & Network Administrator
Telesciences, Inc.
More information about the geeks
mailing list