Hi,
I realise this is borderline off-topic, but would you have any suggestions on tools or an approach that I could use to encrypt data files on the target (as opposed to the source) host?
Thank you.
Vaughan
Release news
- 2023-05-30 Nagwin 5.2.0
- 2023-05-23 Copssh server 7.13.2
- 2023-05-23 Copssh server 8.1.2
- 2023-03-29 Rsync Client Helper GUI 1.0.3.7
- 2023-03-29 Nagwin 5.1.2
Sorry, I don't have too much to contribute in this area. If your target machine is a windows 2000/xp/2003, you can activate encryption feature on the directory.
Hi,
That's OK, I thought of that option, but it has some limitations. I was asked whether I could backup someone's data to my system - but not be able to access the data myself.
If I use NTFS encryption, I have to create an account on my system, if I log onto the system with that account, then the data is accessible. NTFS encryption is aimed at protecting data for a local user of the system. User logs on, user can access data. I would have to configure rsync running in a logged-on session for a particular user (i.e. this approach would be so easy to circumvent, it wouldn't do the job).
To do what I was asked, I need a way of encrypting the data independently of anything that I do.
I'm sure it can be done, I just need to find the right tool.
Thanks anyway.
Vaughan
FWIW I found this
Esync
FWIW I found this
Esync
It's very interesting. I will have a closer look at it. Thank you.
FWIW I found this
Esync
None of these encrypt on the destination (there would be a number of security problems with that approach), but there are a few other projects that provide the equivalent functionality to esync:
zsync
rsyncrypto
Of these rsyncrypto is probably the more mature product.
-Tom
I would take a look at Steganos Safe, www.steganos.com. It creates and mounts an AES-256 encrypted volume that is seen to Windows as a regular file. It is opened and closed manually and can be backed up to a public or private FTP space without worry whether the data can be compromised.
Jeff
Hi Tom,
I am trying to accomplish the same thing as the threader starter. I noticed you said encrypting files on the remote destinations disc would cause some security issues. Can you elaborate on this? I don't quite fully understand.
Thanks,
Gian G. Spicuzza
FWIW I found this
Esync
None of these encrypt on the destination (there would be a number of security problems with that approach), but there are a few other projects that provide the equivalent functionality to esync:
zsync
rsyncrypto
Of these rsyncrypto is probably the more mature product.
-Tom
I found a very great opensource that permit to create encrypted volumes (or a file seen as a volume) Win or linux
http://www.truecrypt.org
Robert
Does anybody have this working in a production environment yet? We're using Rsync to make backups from clients sites over Stunnel/SSL. In an ideal world the files would be encrypted at their end before being rsynced across to us - thereby meaning that we don't have any key material in our possession and hence cannot access their files.
I did look at Rsyncrypto though it looks like we'd then need to have two copies (one encrypted, one plaintext) on the client side. Mounting virtual filesystems from a single file would surely interfere with rsync - you are now transferring this huge file across rather than lots of small (encrypted) files.
Has anybody solved this one?