Pierre Abbat wrote:
> I'm trying to set up a backup service where the repository cannot decrypt the
> backup, but the user can.
So you're competing with Lingnu..... :-)
> So far the script looks like this:
> rsyncrypto -v -r /home /backup/home /backup/homekey /backup/cert.crt
> rsyncrypto --trim=0 -v -r / /backup/root /backup/rootkey /backup/cert.crt
> The secret key has a password.
That is not yet supported.
> Where should the keyfiles, the certificate public key, and the certificate
> private key be placed?
That's up to you to decide.
> When I run rsyncrypto on root, it conks out in /bin, saying "Unhandled file
> type", apparently on encountering a symbolic link. Will this be fixed?
Yes, but it will take a little time. At the moment there is not much we
can do with symlinks.
> /backup is a separate partition. Can rsyncrypto be prevented from encrypting
> it when told to encrypt the root partition?
You can use the "filelist" option with a source file of "-", which means
that rsyncrypto will take the filelist from stdin. You can then use
"find" to generate said file list, and use whatever parameters find can
I'm not sure I'm interested in generating a "smarter" mode, as it will
mean we chase after features that others already do better.
Lingnu Open Source Consulting ltd.
Have you backed up today's work? http://www.lingnu.com/backup.html