|Subject:||Re: [Duplicity-talk] PASSPHRASE, the environment, memory, etc.|
|Date:||Thu, 12 Apr 2007 18:25:33 -0500|
|User-agent:||Thunderbird 126.96.36.199 (X11/20061206)|
Frankly, protecting a system from an attacker with full hardware access is a losing game -- but I'd think you'd want to keep the password on the system being backed up, rather than anywhere else. After all, you keep the data itself there; if it's not secure enough to store your key, it's not secure enough to store the data either, and you should move. By spreading sensitive knowledge across more systems (both the machine being backed up and the separate machine which stores the key used for encrypting the backups), you're increasing your overall exposure as well as adding more moving parts (and thus failure cases).
|[Prev in Thread]||Current Thread||[Next in Thread]|