<br><br><div class="gmail_quote">On Sat, Dec 31, 2011 at 5:29 PM, Scott Castaline <span dir="ltr"><<a href="mailto:skotchman@gmail.com">skotchman@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<div class="im"><br>
On 12/31/2011 12:06 PM, Jim Kinney wrote:<br>
><br>
><br>
> On Sat, Dec 31, 2011 at 11:53 AM, David Tomaschik<br>
</div>> <<a href="mailto:david@systemoverlord.com">david@systemoverlord.com</a> <mailto:<a href="mailto:david@systemoverlord.com">david@systemoverlord.com</a>>><br>
<div class="im">> wrote:<br>
><br>
> On Sat, Dec 31, 2011 at 9:12 AM, Jim Kinney <<a href="mailto:jim.kinney@gmail.com">jim.kinney@gmail.com</a><br>
</div><div><div class="h5">> <mailto:<a href="mailto:jim.kinney@gmail.com">jim.kinney@gmail.com</a>>> wrote:<br>
>> The big headache is the time required to maintain the integrity<br>
>> of<br>
> the data.<br>
>> As was pointed out earlier, encryption is a problem looking to<br>
> happen. Save<br>
>> yourself the headache and buy a data safe instead and park the<br>
> archives<br>
>> there. Unless the data is clearance level stuff now and already<br>
>> stored encrypted, don't bother. If the media is stolen, the<br>
>> encryption<br>
> WILL be<br>
>> cracked so it only make the maintenance cycle worse.<br>
><br>
> I've got to disagree here. The most likely scenario for a theft<br>
> of your drives is a common house burglar. They might plug a hard<br>
> drive in or see whats on a DVD, but they're certainly not going to<br>
> break encryption. I have plenty of data I don't want anyone<br>
> perusing (mostly financial data -- 1040s, W2s, paystubs, etc.) and<br>
> LUKS encryption on the hard drives my backups reside on should be<br>
> plenty to deter "casual" snooping if the drive gets stolen.<br>
><br>
><br>
> Point taken. If they went through my safe to get the backups, they<br>
> are likely sophisticated enough to also use the wrench process to<br>
> get the key from as well. So I rely on physical security for<br>
> archives and encryption for mobile data.<br>
><br>
><br>
> Plus, if the drive is encrypted and later fails, you don't have to<br>
> worry about whether there's some data that's still recoverable,<br>
> etc.<br>
><br>
><br>
> Old drive platters make nice wind chimes :-)<br>
<br>
</div></div>Also good analog clock faces<br>
<div class="im">><br>
><br>
> The only entities with the resources to break any currently decent<br>
> cryptosystem (e.g., 128-bit AES) are large corporations and<br>
> governments, and they'll just use the WRENCH method for<br>
> decryption: <a href="http://xkcd.com/538/" target="_blank">http://xkcd.com/538/</a><br>
><br>
><br>
> Thus all my pr0n is encrypted to give them something to sort<br>
> through :-D<br>
><br>
><br>
> -- David Tomaschik, RHCE, LPIC-1 System Administrator/Open Source<br>
> Advocate OpenPGP: 0x5DEA789B <a href="http://systemoverlord.com" target="_blank">http://systemoverlord.com</a><br>
</div>> <a href="mailto:david@systemoverlord.com">david@systemoverlord.com</a> <mailto:<a href="mailto:david@systemoverlord.com">david@systemoverlord.com</a>><br>
> _______________________________________________ Ale mailing list<br>
> <a href="mailto:Ale@ale.org">Ale@ale.org</a> <mailto:<a href="mailto:Ale@ale.org">Ale@ale.org</a>><br>
<div class="im">> <a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a> See JOBS, ANNOUNCE and<br>
> SCHOOLS lists at <a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
><br>
><br>
><br>
><br>
> -- -- James P. Kinney III<br>
><br>
> As long as the general population is passive, apathetic, diverted<br>
> to consumerism or hatred of the vulnerable, then the powerful can<br>
> do as they please, and those who survive will be left to<br>
</div>> contemplate the outcome. - ////2011 Noam Chomsky<br>
><br>
> <a href="http://heretothereideas.blogspot.com/" target="_blank">http://heretothereideas.blogspot.com/</a> ////<br>
<div class="im">><br>
><br>
> _______________________________________________ Ale mailing list<br>
> <a href="mailto:Ale@ale.org">Ale@ale.org</a> <a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a> See JOBS,<br>
> ANNOUNCE and SCHOOLS lists at <a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
<br>
</div>-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v1.4.11 (GNU/Linux)<br>
Comment: Using GnuPG with Mozilla - <a href="http://enigmail.mozdev.org/" target="_blank">http://enigmail.mozdev.org/</a><br>
<br>
iQIcBAEBAgAGBQJO/4yuAAoJEIefqZ0kni1dkPoQAKlq/8UxAYjr74DcRtdyqe0+<br>
O8WAdrzwpIr07dfxZvBvRUsuSDjzje1So/4J6HA0+GrI3YJFv5qXvLJ7SDvETzMB<br>
M/mnflnkdWuFSMtLf01THlEKLtAilUYNT1Zz3X1ZM/3xGq5wK88xWI8kNG8WFzeG<br>
jnU6RIUGJPcyTBV9neqLXzvYc3mhR1j/I+rQJwaqIYjSgoHwHfAJY4iV1JfHOaaz<br>
rCXa/Jrwlat1SqMPr+luBX3J4Tj0uAvF6mo5MNpnAiakgeOojOiCYJWp5H7kN1Pv<br>
zrjHH8alUQ/Ej593u+agw8YDF5a6Whi/cwk2vtGSl/Wy4coE97KRd+GCt4Cjk2Vd<br>
vCBAISynXE4IlUT4MXmgYUsUX6mixs4eI8LnAvXh1wHGMRUT3vP/naCoalx2FRBh<br>
7yegd+iegY6tyDCZIs+IB4qzPTpn8A9JAZb3qFRVZ0db2MXx6Bi/Wmj1ykHj4yjR<br>
5IBnkr/fyhYozwB2rVi7l4wNr6HhOratdEqBI15/3FWji19wVklAcWBiznJgApu5<br>
0Kbh1dZNQrZsEF1eGvu5r+lggtWhBrlZivqAzW/QuxnLdIR3wjvn8OPv/9mwyyoo<br>
AerYEaBd4hU8VZvYNbpr/NJtZsbErYgdgADqye9lxjQQtKiepVUnQuyJ+6l4bGvO<br>
4NcnFWxoQ+4cQZ1c2sq0<br>
=3mcm<br>
-----END PGP SIGNATURE-----<br>
<br>_______________________________________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
<br></blockquote></div><br>I think tarballs and rsync to alternate machines is more straightforward than any of the backup applications I have been looking at. First tarball the data and keep it locally, in case the problem is corrupted data, and then weekly, run the stuff to a backup server or servers in case the whole server goes down.<br>
<br>Wolf Halton<br>-- <br>This Apt Has Super Cow Powers - <a href="http://sourcefreedom.com" target="_blank">http://sourcefreedom.com</a><br>Advancing Libraries Together - <a href="http://LYRASIS.org" target="_blank">http://LYRASIS.org</a><br>
<br>