Am 06.05.22 um 12:34 schrieb Exuvo:
Sorry for a lot of replies.
never mind, I am happy to get help and some communication going
Added your suggestion with:
echo "$@" > /tmp/encryptparams
now
I looked at my config and i only use estimate calcsize and estimate
server as estimate client was
Given that the normal amcrypt scripts work it must be some of the setup rows
they have that are needed. They seemed superfluous for my use so i removed them.
Try prepending the following to the script:
prefix="/usr"
exec_prefix="${prefix}"
sbindir="/usr/bin"
amlibexecdir="/usr/lib/amanda"
.
Sorry for a lot of replies.
I looked at my config and i only use estimate calcsize and estimate server as
estimate client was so slow when it was using that.
I probably never tested my encryption script with estimate client which i think
is the default.
Anton "exuvo" Olsson
ex...@exuvo.se
Actually it might be related to the estimates. Try and see if it works if you use another estimate
mode like "estimate server" or "estimate calcsize".
Anton "exuvo" Olsson
ex...@exuvo.se
On 2022-05-06 12:21, Exuvo wrote:
I have never used amsamba, i only use dd and tar type backups.
If you
I have never used amsamba, i only use dd and tar type backups.
If you change my encryption script to write its arguments and errors to a file
it might be easier to see what is going wrong or if amsamba uses it differently
somehow.
echo "$@" > /tmp/encryptparams
/usr/bin/openssl enc -pbkdf2 -e
Am 04.05.22 um 16:46 schrieb Exuvo:
Ah yes my RANDFILE was probably already created long ago when i
initially set up encryption.
From what i have read the random file is not really on most systems as
it is only there to help with low entropy systems (ie server that does
nothing most of
Hi,
On topic of low entropy: if you're not already familiar with it, please
take a look at https://github.com/jirka-h/haveged especially for
headless systems.
Cheers,
Kees
On 04-05-2022 16:46, Exuvo wrote:
Ah yes my RANDFILE was probably already created long ago when i
initially set up
Ah yes my RANDFILE was probably already created long ago when i initially set
up encryption.
From what i have read the random file is not really on most systems as it is
only there to help with low entropy systems (ie server that does nothing most
of the time).
Each time openssl runs it uses
Am 04.05.22 um 12:46 schrieb Stefan G. Weichinger:
Am 04.05.22 um 11:36 schrieb Exuvo:
Yeah the included ossl usage is using old key derivation. On my
installation i have replaced amcrypt-ossl usage with:
# cat /etc/amanda/encrypt
#!/bin/bash
AMANDA_HOME=~amanda
Am 04.05.22 um 11:36 schrieb Exuvo:
Yeah the included ossl usage is using old key derivation. On my
installation i have replaced amcrypt-ossl usage with:
# cat /etc/amanda/encrypt
#!/bin/bash
AMANDA_HOME=~amanda
PASSPHRASE=$AMANDA_HOME/.am_passphrase # required
RANDFILE=$AMANDA_HOME/.rnd
Yeah the included ossl usage is using old key derivation. On my installation i
have replaced amcrypt-ossl usage with:
# cat /etc/amanda/encrypt
#!/bin/bash
AMANDA_HOME=~amanda
PASSPHRASE=$AMANDA_HOME/.am_passphrase # required
RANDFILE=$AMANDA_HOME/.rnd
export RANDFILE
if [ "$1" = -d ]; then
Am 17.12.21 um 04:35 schrieb Stefan G. Weichinger:
That's an old one, but as far as I see, not fixed yet:
I get problems with DLEs using amcrypt-ossl.
The message in amstatus contains "deprecated key derivation used".
This seems to point to something like this issue:
That's an old one, but as far as I see, not fixed yet:
I get problems with DLEs using amcrypt-ossl.
The message in amstatus contains "deprecated key derivation used".
This seems to point to something like this issue:
13 matches
Mail list logo
