File: amcrypt-ossl.8.xml

package info (click to toggle)
amanda 1%3A3.5.1-2
  • links: PTS, VCS
  • area: main
  • in suites: buster
  • size: 30,596 kB
  • sloc: ansic: 265,630; perl: 114,246; xml: 16,058; sh: 8,667; makefile: 2,794; awk: 502; lex: 407; yacc: 347; tcl: 118; sql: 19; sed: 16; php: 2
file content (84 lines) | stat: -rw-r--r-- 2,635 bytes parent folder | download | duplicates (8) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
 
<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN"
                   "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd"
[
  <!-- entities files to use -->
  <!ENTITY % global_entities SYSTEM 'global.entities'>
  %global_entities;
]>

<refentry id='amcrypt-ossl.8'>

<refmeta>
  <refentrytitle>amcrypt-ossl</refentrytitle>
  <manvolnum>8</manvolnum>
&rmi.source;
&rmi.version;
&rmi.manual.8;
</refmeta>
<refnamediv>
  <refname>amcrypt-ossl</refname>
  <refpurpose>crypt program for Amanda symmetric data encryption using OpenSSL</refpurpose>
</refnamediv>
<refentryinfo>
&author.ktill;
</refentryinfo>
<!-- body begins here -->
<refsynopsisdiv>
  <cmdsynopsis>
    <command>amcrypt-ossl</command>    
    <arg choice="opt">-d</arg>
  </cmdsynopsis>
</refsynopsisdiv>
<refsect1>
  <title>DESCRIPTION</title>
  <para>
    &amcryptossl; uses <emphasis remap='B'>OpenSSL</emphasis> to encrypt
    and decrypt data.  OpenSSL is available from <ulink
    url="http://www.openssl.org/">www.openssl.org</ulink>. OpenSSL
    offers a wide variety of cipher choices (&amcryptossl; defaults to
    256-bit AES) and can use hardware cryptographic accelerators on several
    platforms.
  </para>
  <para>
    &amcryptossl; will search for the OpenSSL program in the following
    directories: /bin:/usr/bin:/usr/local/bin:/usr/ssl/bin:/usr/local/ssl/bin.
  </para>
</refsect1>
<refsect1>
  <title>PASSPHRASE MANAGEMENT</title>
  <para>
    &amcryptossl; uses the same pass phrase to encrypt and decrypt data.
    It is very important to store and protect the pass phrase properly.
    Encrypted backup data can <emphasis remap='B'>only</emphasis> be
    recovered with the correct passphrase.
  </para>
  <para>
    OpenSSL's key derivation routines use a salt to guard against
    dictionary attacks on the pass phrase; still it is important to pick
    a pass phrase that is hard to guess.  The Diceware method (see <ulink
    url="http://www.diceware.com/">www.diceware.com</ulink>) can be used to create passphrases
    that are difficult to guess and easy to remember.
  </para>
</refsect1>
<refsect1>
  <title>FILES</title>
  <variablelist remap='TP'>
    <varlistentry>
      <term>/var/lib/amanda/.am_passphrase</term>
      <listitem>
	<para>
	  File containing the pass phrase. It should not be readable by any user other than the Amanda user.
	</para>
      </listitem>
    </varlistentry>
  </variablelist>
</refsect1>

<seealso>
<manref name="amanda.conf" vol="5"/>,
<manref name="openssl" vol="1"/>,
<manref name="amcrypt-ossl-asym" vol="8"/>
</seealso>

</refentry>