Date: Wed, 19 May 1999 01:58:19 +1200 From: Andrew McNaughton <andrew@squiz.co.nz> To: Kris Kennaway <kkennawa@physics.adelaide.edu.au> Cc: Adam Shostack <adam@homeport.org>, Adam Shostack <adam@breakwater.homeport.org>, nr1@ihug.co.nz, freebsd-security@FreeBSD.ORG Subject: Re: secure backup Message-ID: <199905181358.BAA09208@aniwa.sky> In-Reply-To: Your message of "Mon, 17 May 1999 23:09:09 %2B0930." <Pine.OSF.4.10.9905172252050.22357-100000@bragg>
next in thread | previous in thread | raw e-mail | index | archive | help
Kris Kennaway wrote: > I was talking about authentication for access to the tape server process > itself (preventing other people from writing onto your tape). You're correct > about PGP - it's probably better to use PGP instead of bdes (or equivalent > symmetric encryption filter) for this reason - verification that your data > stream was read back intact (and assuming perfect retrieval, was stored > intact) when you restore. If the backup is bigger than available space, then the stream would have to be processed twice, once to do the checksum, and then if that passed, a second time to actually restore files. Backups tend to be large, and temporary storage of the received stream is likely not to be an option. No doubt some sort of block checksumming approach could be taken. Andrew McNaughton -- ----------- Andrew McNaughton andrew@squiz.co.nz http://www.newsroom.co.nz/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199905181358.BAA09208>