Robin Lee Powell wrote:
>
> I'm sorry, but I tried at one point.  I couldn't deal with the code.
> :(
>   
And I actually tried.....

> That wasn't my intention at all.
No harm done.
>   My intention was to point out
> something useful in similar situations to those who didn't know
> about it (like me, until a couple of hours ago).
In  that case, lets start with a link:
http://sourceforge.net/projects/ecryptfs or http://www.arg0.net/encfs

I downloaded a presentation about it, and I have the following insights:

    * This is an encrypted file system. This has nothing to do with
      rsyncrypto (i.e. - not the same design goals)
    * If you attempt to use EncFS for rsync, there are two ways to do
      it. Either show rsync the decrypted version (through EncFS) or the
      encrypted version (through the original file system):
          o Using the former is just like using any other file system.
          o Using the later, I find it hard to believe that it actually
            provides rsync friendliness. In particular, does it provide
            rsync friendliness if the change (not at the end of the
            file) caused a modification to the file size?
    * I have not looked at the actual implementation, only at the
      presentation, but it seems to me that the "stream mode" offers
      grave security issues if an attacker ever has access to the same
      encrypted image before and after a modification that changes the
      file length. This is unrelated to rsyncrypto. This is, by the way,
      an issue with many file encrypting programs.

In other words, EncFS may or may not be a good idea on its own, but I 
wouldn't use it as a rsyncrypto replacement if rsyncability is important 
to you (and if it's not, I wouldn't use rsyncrypto either, though I have 
to admit that there is a shortage of whole tree encryptors of a 
reasonable quality).
>   Sorry you felt attacked.
>   
Forgotten.
> -Robin
>
>   
Shachar

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________
Rsyncrypto-devel mailing list
Rsyncrypto-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rsyncrypto-devel

Reply via email to