You may
- create encrypted devices from files with lofiadm with any size, even 2
GB to backup the files on any filesystem
- create an encrypted ZFS pool from these devices (works with OI and ZFS 28)
backup such a pool: copy the files to any backup device (cloud, other
NAS, even USB disks, sti
On 08/28/12 06:42 AM, Julius Roberts wrote:
Is there a better way to be doing this? Ours seems a
little resource intensive and I'm not sure if it's reliable for large >
500gb datasets.
lofiadm is used on Opensolaris so you can use it in Openindiana.
Would like to know what performance you are
On 08/30/2012 01:37 PM, Edward Ned Harvey (openindiana) wrote:
>> From: Jan Owoc [mailto:jso...@gmail.com]
>>
>> My personal opinion is that a variant on the way you described it in
>> your original mail is the best:
>> zfs send your_data | your_favourite_compression |
>> your_favourite_encryption
> From: Jan Owoc [mailto:jso...@gmail.com]
>
> My personal opinion is that a variant on the way you described it in
> your original mail is the best:
> zfs send your_data | your_favourite_compression |
> your_favourite_encryption > /usb_fs/backup.gz.gpg
I still say, don't receive into a file. Th
2012-08-29 16:08, Thorsten Heit wrote:
I'm using bzip2 because it has better compression rates than gzip and
because our company only uses fast ethernet although every PC has Gigabit
NICs built in :-o
If you don't like bzip2, then use something else such as gzip, xz, ...
If your modern PCs al
On Wed, Aug 29, 2012 at 6:20 PM, Julius Roberts wrote:
> On 29 August 2012 21:37, Edward Ned Harvey (openindiana) <
> openindi...@nedharvey.com> wrote:
>
>> I'm not sure when encryption was added to zfs, but you might have to get
>> solaris 11 from oracle.
>>
>
> As far as i know, OI was forked fr
On 29 August 2012 21:37, Edward Ned Harvey (openindiana) <
openindi...@nedharvey.com> wrote:
> I'm not sure when encryption was added to zfs, but you might have to get
> solaris 11 from oracle.
>
As far as i know, OI was forked from open solaris before encryption was
added to zfs, and clearly tha
Hi,
> > # zfs send fs@snapshot | bzip2 -z -c | gpg -c --cipher-algo AES
> > --digest-algo SHA512 > /media/usb/stream.gpg
>
> Based on performance characteristics, I would never recommend bzip2
> for anything. For most situations like this, fast compression would
> be more desirable (lzop is fas
On Wed, Aug 29, 2012 at 7:39 PM, Edward Ned Harvey (openindiana)
wrote:
>> From: Gary [mailto:gdri...@gmail.com]
>>
>> Have you priced out self-encrypting aka hardware-based encrpytion drives?
>> http://en.wikipedia.org/wiki/Hardware-based_full_disk_encryption
>
> To my knowledge, all hard-ware ba
> From: Thorsten Heit [mailto:thorsten.h...@vkb.de]
>
> # zfs send fs@snapshot | bzip2 -z -c | gpg -c --cipher-algo AES
> --digest-algo SHA512 > /media/usb/stream.gpg
Based on performance characteristics, I would never recommend bzip2 for
anything. For most situations like this, fast compressio
> From: Gary [mailto:gdri...@gmail.com]
>
> Have you priced out self-encrypting aka hardware-based encrpytion drives?
> http://en.wikipedia.org/wiki/Hardware-based_full_disk_encryption
To my knowledge, all hard-ware based self-encrypting drives require a BIOS /
UEFI password be typed in when the
> From: Julius Roberts [mailto:hooliowobb...@gmail.com]
>
> /sbin/zfs send -R Backups/natoffice@offsite | /usr/bin/encrypt -a aes -k
> ~/encryption.key -o /Offsite/encrypted_zfs_send_blob
>
> Is there a better way to be doing this? Ours seems a
> little resource intensive and I'm not sure if it'
Hi,
> Reliability is assured, so you can sleep peacefully. Send streams are
> AFAIK checksummed too, so no need to worry about your bits getting
> corrupted on the way. Anyway, you can always just use something like GPG
> which hashes the encrypted output by default and checks integrity on
> decry
On 08/29/2012 01:27 AM, Julius Roberts wrote:
> anyone?
Hi Julius,
Seems like nobody picked up the question, so I'm going to.
> On 28 August 2012 14:42, Julius Roberts wrote:
>
>> Hi guys,
>>
>> due to a lack of high-speed networking, we're unable to replicate our ZFS
>> pool offsite, so we're
Julius Roberts wrote:
> Is there a better way to be doing this? Ours seems a
> little resource intensive and I'm not sure if it's reliable for large
> 500gb datasets.
>
Have you priced out self-encrypting aka hardware-based encrpytion drives?
http://en.wikipedia.org/wiki/Hardware-based_full_disk
anyone?
On 28 August 2012 14:42, Julius Roberts wrote:
> Hi guys,
>
> due to a lack of high-speed networking, we're unable to replicate our ZFS
> pool offsite, so we're relying on a zfs send to a USB disk. We'd like that
> encrypted.
>
> Currently i have an automated process which creates a zpo
Hi guys,
due to a lack of high-speed networking, we're unable to replicate our ZFS
pool offsite, so we're relying on a zfs send to a USB disk. We'd like that
encrypted.
Currently i have an automated process which creates a zpool Offsite on a
big USB HDD, and then runs something like this, then e
17 matches
Mail list logo
