Areca Backup [LSARC/2008/681 Self Review]
Darren J Moffat
Darren.Moffat at sun.com
Wed Nov 5 02:44:11 PST 2008
Given the unsafe nature of the crypto in this project and the fact that
it does not support ZFS ACLs or attributes I see no point in integrating
this into OpenSolaris/Solaris. It would in my opinion be more harmful
to have it than not have it. It also provides a false sense of security
due to the weak way that the passphrases are turned into encryption keys
(ie there is no salting so no protection against brute force key attack).
For personal backups it would be safer to use tar and if encryption is
needed then the encrypt(1) and mac(1) commands can be used for to
provide safer (than what this case provides) encrypted versions of the
tar files using a documented and committed format. Instead of this
project maybe we should build a simple personal backup tool around the
clis we already have in OpenSolaris.
I do not approve of this case being integrated.
--
Darren J Moffat
More information about the opensolaris-arc
mailing list