|
|
| Line 1: |
Line 1: |
| ==NAME==
| | See {{man|8|amcryptsimple}}. |
| | |
| amcryptsimple - reference simple crypt program for Amanda symmetric data encryption | |
| | |
| ==SYNOPSIS==
| |
| | |
| amcryptsimple to be called by Amanda only
| |
| | |
| ==DESCRIPTION==
| |
| | |
| amcryptsimple calls gpg to perform symmetric data encryption on Amanda backup. amcryptsimple will search for the gpg program in the following directories: /usr/local/bin:/usr/bin:/usr/sbin:/bin:/sbin
| |
| | |
| amcryptsimple uses one passphrase to encrypt the Amanda data and uses the same passphrase to decrypt the Amanda backup data. amcryptsimple
| |
| uses AES256 as the symmetric cipher.
| |
| | |
| ===HOW TO CREATE PASSPHRASE===
| |
| | |
| Store the passphrase inside the home-directory of the AMANDA user($amanda_user) and protect it with proper permissions:
| |
| | |
| echo my_secret_passphrase > ~$amanda_user/.am_passphrase
| |
| chown $amanda_user:disk ~$amanda_user/.am_passphrase
| |
| chmod 700 ~$amanda_user/.am_passphrase
| |
| | |
| ==NOTES==
| |
| | |
| Choose a good passphrase and protect it properly. Backup data can only be restored with the passphrase. There is no backdoor.
| |
| | |
| If storing and securing passphrase in your environment presents challenges, Amanda provide public-key data encryption through amgpgcrypt. Public-key encryption uses the public key to encrypt and uses the private key to decrypt.
| |
| | |
| ==SEE ALSO==
| |
| | |
| [http://wiki.zmanda.com/index.php/Amanda amanda](8), [http://wiki.zmanda.com/index.php/Amanda.conf amanda.conf](5), [http://wiki.zmanda.com/index.php/Amcrypt amcrypt](8), [[amgpgcrypt]](8), [http://wiki.zmanda.com/index.php/Amrestore amrestore](8), gpg(1)
| |