1AMCRYPT(8) System Administration Commands AMCRYPT(8)
2
6 amcrypt - reference crypt program for Amanda symmetric data encryption
7
9 amcrypt
10
12 amcrypt requires aespipe, uuencode and gpg to work. Aespipe is
13 available from : http://loop-aes.sourceforge.net
14 amcrypt will search for the aespipe program in the following
16 directories: /usr/bin:/usr/local/bin:/sbin:/usr/sbin.
17 amcrypt calls amaespipe and pass the passphrase through file descriptor
19 3. The passphrase should be stored in ~amanda/.am_passphrase.
20
22 1. Create 65 random encryption keys and encrypt those keys using gpg.
23 Reading from /dev/random may take indefinitely long if kernel's random
24 entropy pool is empty. If that happens, do some other work on some
25 other console (use keyboard, mouse and disks).
26 head -c 2925 /dev/random | uuencode -m - | head -n 66 | tail -n 65 \ |
28 gpg --symmetric -a > ~amanda/.gnupg/am_key.gpg
29 This will ask for a passphrase. Remember this passphrase as you will
31 need it in the next step.
32 2. Store the passphrase inside the home-directory of the AMANDA-user
34 and protect it with proper permissions:
35 echo my_secret_passphrase > ~amanda/.am_passphrase
36 chown amanda:disk ~amanda/.am_passphrase
37 chmod 700 ~amanda/.am_passphrase
38
40 amcrypt uses the same key to encrypt and decrypt data.
41 It is very important to store and protect the key and the passphrase
43 properly. Encrypted backup data can only be recovered with the correct
44 key and passphrase.
45
47 amanda(8), amanda.conf(5), aespipe(1), amaespipe(8), gpg(1)
48 The Amanda Wiki: : http://wiki.zmanda.com/
50
52 Kevin Till <kevin.till@zmanda.com>
53 Zmanda, Inc. (http://www.zmanda.com)
54Amanda 3.5.1 12/01/2017 AMCRYPT(8)