Search Members Help

» Welcome Guest
[ Log In :: Register ]

Mini-ITX Boards Sale, Fanless BareBones Mini-ITX, Bootable 1G DSL USBs, 533MHz Fanless PC <-- SALE $200 each!
Get The Official Damn Small Linux Book. DSL Market , Great VPS hosting provided by Tektonic
 

[ Track this topic :: Email this topic :: Print this topic ]

reply to topic new topic new poll
Topic: Backup Encryption Choice< Next Oldest | Next Newest >
s.wang1994 Offline





Group: Members
Posts: 3
Joined: Jan. 2008
Posted: May 07 2008,00:30 QUOTE

Is there a way to make the backup be encrypted with an algorithm other than blowfish. Alowing users to switch to something else like serpent or AES would be nice.
Back to top
Profile PM 
lucky13 Offline





Group: Members
Posts: 1478
Joined: Feb. 2007
Posted: May 07 2008,02:18 QUOTE

There are several encryption extensions in MyDSL if you're not satisfied with what's included in the base. If DSL were to include alternatives for everything in the base, it wouldn't be small anymore.

--------------
"It felt kind of like having a pitbull terrier on my rear end."
-- meo (copyright(c)2008, all rights reserved)
Back to top
Profile PM WEB 
curaga Offline





Group: Members
Posts: 2163
Joined: Feb. 2007
Posted: May 07 2008,14:19 QUOTE

And blowfish is a definite improvement over the previous 3des.

--------------
There's no such thing as life. Those mean little jocks invented it ;)
-
Windows is not a virus. A virus does something!
Back to top
Profile PM 
WDef Offline





Group: Members
Posts: 798
Joined: Sep. 2005
Posted: May 08 2008,11:30 QUOTE

Not sure I'd entirely agree with that.

bcrypt is smaller and faster perhaps but it doesn't work in a pipe so dsl is currently writing unencrypted plaintext to disk before encrypting it, then using bcrypt's overwriting feature to overwrite the plaintext.   For strong security, the unencrypted data should never get written to disk in the first place, since (especially on very old drives) overwriting a few times may not prevent recovery of the data, especially when attacked with the right resources, which are not expensive.

Also, bcrypt has not been maintained for a long time. For any program related to security, that is not so good.

In my reading flaws in the algorithm itself are much less likely these days than common flaws in implementation, as far as vulnerabilities go.   Writing to disk in plaintext has to be considered a problematic implementation.

My $0.02 worth.
Back to top
Profile PM 
3 replies since May 07 2008,00:30 < Next Oldest | Next Newest >

[ Track this topic :: Email this topic :: Print this topic ]

 
reply to topic new topic new poll
Quick Reply: Backup Encryption Choice

Do you wish to enable your signature for this post?
Do you wish to enable emoticons for this post?
Track this topic
View All Emoticons
View iB Code