amuck-landowner

Hardware Porn (aka our new backups node)

W

willie

Active Member
Francisco said:
I don't expect everyone to want them enabled anyways. Some users will insist on doing their own backups and some will disable them due to privacy concerns.
Click to expand...
Might be a nice Stallion feature to be able to encrypt the backups using a GPG key that the user supplies.  Of course that means you can't transparently restore.  The user instead gets an encrypted tarball that they have to decrypt themselves.
 
Ruchirablog

Ruchirablog

New Member
willie said:
Might be a nice Stallion feature to be able to encrypt the backups using a GPG key that the user supplies.  Of course that means you can't transparently restore.  The user instead gets an encrypted tarball that they have to decrypt themselves.
Click to expand...
why? It may come handy for KVM but not for OpenVZ. Why encrypt backups when all files are available in clear form in the node 
 
W

willie

Active Member
Ruchirablog said:
why? It may come handy for KVM but not for OpenVZ. Why encrypt backups when all files are available in clear form in the node 
Click to expand...
So that when the user deletes files and the corresponding decryption key, the data is gone and inaccessible, except to fancy data recovery techniques that wouldn't be used in normal situations (i.e. routine deletion of no-longer-needed sensitive data, not a case where the user was up to no good or some crazed attacker rooted the server to attempt data recovery on the raw disk volumes).  Realistically though, maybe you're right and this scenario isn't that important.
 
Francisco

Francisco

Company Lube
Verified Provider
Finally back home :)

I'll start configuring the node tomorrow/this weekend and start hammering the last of the code ASAP.

Francisco
 
You must log in or register to reply here.
Top
amuck-landowner