> From: [email protected] [mailto:[email protected]] > On Behalf Of Josh Smift > > I keep meaning to look into whether I could > create a whole-disk-encrypted filesystem-in-a-file, which I could mount, > back up to, unmount, and then copy off-site.
You mean like TrueCrypt? Or encrypted DMG (mac osx)? As for incrementals - one option is something like rsync which, if configured a certain way, will read the file locally and remotely, and only send binary diff's across the wire ... but it can still be kind of time consuming to calculate the diff's... Or you mount the local side, mount the remote side, and then use something like rsync to mirror the contents of the encrypted volume. > Anyone actually done this? It seems like it should be simple, I just > haven't (a) put the pieces together; (b) thought for more than about > thirty seconds about potential pitfalls. I formerly used Truecrypt locally, and a TrueCrypt file remotely over samba. Mount them both, sync from one to another, dismount the backup. It worked, but it was manual and slow. For linux, I am in favor of encfs. Encrypts on a per-file basis, so then it's actually *reasonable* to allow something like dropbox to store the encrypted files someplace remotely. On mac, encfs exists, but it's kind of difficult to get installed, and it's slightly on the unstable side. But pretty reasonable, I use it. On windows, encfs exists but it has some very serious reliability issues. If you learn by trial and error, you learn what operations to avoid. As long as I just store txt files in windows encfs, and I don't allow the computer to sleep, then it's stable. _______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
