Robin Lee Powell wrote: > > I'm sorry, but I tried at one point. I couldn't deal with the code. > :( > And I actually tried.....
> That wasn't my intention at all. No harm done. > My intention was to point out > something useful in similar situations to those who didn't know > about it (like me, until a couple of hours ago). In that case, lets start with a link: http://sourceforge.net/projects/ecryptfs or http://www.arg0.net/encfs I downloaded a presentation about it, and I have the following insights: * This is an encrypted file system. This has nothing to do with rsyncrypto (i.e. - not the same design goals) * If you attempt to use EncFS for rsync, there are two ways to do it. Either show rsync the decrypted version (through EncFS) or the encrypted version (through the original file system): o Using the former is just like using any other file system. o Using the later, I find it hard to believe that it actually provides rsync friendliness. In particular, does it provide rsync friendliness if the change (not at the end of the file) caused a modification to the file size? * I have not looked at the actual implementation, only at the presentation, but it seems to me that the "stream mode" offers grave security issues if an attacker ever has access to the same encrypted image before and after a modification that changes the file length. This is unrelated to rsyncrypto. This is, by the way, an issue with many file encrypting programs. In other words, EncFS may or may not be a good idea on its own, but I wouldn't use it as a rsyncrypto replacement if rsyncability is important to you (and if it's not, I wouldn't use rsyncrypto either, though I have to admit that there is a shortage of whole tree encryptors of a reasonable quality). > Sorry you felt attacked. > Forgotten. > -Robin > > Shachar ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Rsyncrypto-devel mailing list Rsyncrypto-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rsyncrypto-devel
