Fred James wrote:

> Right now, our backups tapes are written with ...
> tar -cvf /dev/st0 ./$Path >> $TOC
> ... and I am thinking of adding some kind of encryption to the routine.
> Is there anything simple, or am I looking at writing something to use
> the likes of blowfish?  Thank you in advance for any help you may be
> able to offer.

If you just want to encrypt a tar file, you can do this.

    tar cvf - ./$Path | openssl bf -e -pass pass:xyzzy > /dev/st0 >> $TOC

To decrypt, do this.

    openssl bf -d < /dev/st0 | tar xf - $files
    enter bf-cbc decryption password: xyzzy    

Look at the openssl and bf man pages for details.

But think carefully about password management.  The scheme above
uses a fixed password.  A regularly changing one would be better.
A password that isn't stored in a script would be better yet.

-- 
Bob Miller                              K<bob>
kbobsoft software consulting
http://kbobsoft.com                     [EMAIL PROTECTED]
_______________________________________________
EUGLUG mailing list
[email protected]
http://www.euglug.org/mailman/listinfo/euglug

Reply via email to