Re: utilisateur backup

To: Boris Daix <Boris.Daix@insa-lyon.fr>
Cc: debian-security@lists.debian.org
Subject: Re: utilisateur backup
From: Mathias Palm <Mathias.Palm@gmx.net>
Date: Fri, 19 Jul 2002 15:58:18 +0200
Message-id: <[🔎] 20020719135818.GA514@Osterstein>
In-reply-to: <[🔎] 87ofd411s9.fsf@pulsar.resi.insa-lyon.fr>
References: <[🔎] 87ofd411s9.fsf@pulsar.resi.insa-lyon.fr>

On Fri, Jul 19, 2002 at 11:53:58AM +0200, Boris Daix wrote:
> Hi all,
> 
>    I'd like to make backup via cron and I saw there were a user 
> named "backup" in passwd file. My problem is that the backups should
> travel via LAN to another machine (running Woody too), so that
> they backup eachother in fact. I'd like to use rsync to transfer only
> changes, with SSH to increase security, but my question is :
> 
>    - Can I safely give an SSH key to my backup user without any
>      passphrase so that it could be automated via cron ?

I'd say, the security is that of your original account then. Say there
are the computers A and B, where A:backup has got access to B:backup by 
a phraseless ssh-key. You can log on to account A:backup and ssh to
B:backup because of the phraseless key, therefor the maximum of the
security you can achive is the security of account A:backup. 

>    - Is amanda appropriate for this task and would it be more secure
>      to use it instead ?

I am using it to backup a bunch of maschines on one tape also using
cron. I found it easy to configure and am quite satisfied. You can even
configure Amanda in a way that it only transfers changes. On the other
hand, Amanda is meant to dump backups on tapes. I cant tell you if there
is an easy way to reconfigure it.

>    - If it is unsecure, how would I do such backups without having to
>      enter passpgrase/passwd ?
> 

What sort of security do you want? Do you want your backups be 
encrypted? Amanda can't do that, to my knowledge. 

Amanda provides some sort of restricted host access. But I cant tell, if
it would retain a determined attacker.

Otherwise I have not heart of exploits of amanda yet. 

> Thanks a lot
> 
> -- 
> Boris Daix
> 
> 	"Feel free to be free, or not to be..."
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 

-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: utilisateur backup
  - From: "Noah L. Meyerhans" <frodo@morgul.net>
- Re: utilisateur backup
  - From: Boris Daix <Boris.Daix@insa-lyon.fr>

References:
- utilisateur backup
  - From: Boris Daix <Boris.Daix@insa-lyon.fr>

Prev by Date: Re: utilisateur backup
Next by Date: Re: utilisateur backup
Previous by thread: Re: utilisateur backup
Next by thread: Re: utilisateur backup
Index(es):
- Date
- Thread