1 <?xml version="1.0" encoding="ISO-8859-1"?>
2 <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN"
3 "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd"
5 <!-- entities files to use -->
6 <!ENTITY % global_entities SYSTEM 'global.entities'>
10 <refentry id='amcryptsimple.8'>
12 <refentrytitle>amcryptsimple</refentrytitle>
13 <manvolnum>8</manvolnum>
19 <refname>amcryptsimple</refname>
20 <refpurpose>reference simple crypt program for Amanda symmetric data encryption</refpurpose>
25 <!-- body begins here -->
28 <command>amcryptsimple</command> to be called by Amanda only
32 <refsect1><title>DESCRIPTION</title>
34 calls <emphasis remap='B'>gpg</emphasis> to perform symmetric data encryption
36 &amcryptsimple; will search for the gpg program in the following directories:
37 /usr/local/bin:/usr/bin:/usr/sbin:/bin:/sbin</para>
38 <para>&amcryptsimple; uses one passphrase to encrypt the Amanda data
39 and uses the same passphrase to decrypt the Amanda backup data. &amcryptsimple; uses
40 AES256 as the symmetric cipher.</para>
44 <refsect1><title>How to Create Passphrase</title>
46 <para>Store the passphrase inside the home-directory of the Amanda user ($amanda_user) and protect it with proper permissions:
48 echo my_secret_passphrase > ~$amanda_user/.am_passphrase
49 chown $amanda_user:disk ~$amanda_user/.am_passphrase
50 chmod 700 ~$amanda_user/.am_passphrase
51 </programlisting></para>
54 <refsect1><title>NOTES</title>
55 <para>Choose a good passphrase and protect it properly. Backup data can only be
56 restored with the passphrase. There is no backdoor.</para>
57 <para>If storing and securing passphrase in your environment presents challenges,
58 Amanda provide public-key data encryption through &amgpgcrypt;. Public-key
59 encryption uses the public key to encrypt and uses the private key to decrypt.</para>
63 <manref name="amanda.conf" vol="5"/>,
64 <manref name="amcrypt" vol="8"/>,
65 <manref name="amgpgcrypt" vol="8"/>,
66 <manref name="amrestore" vol="8"/>,
67 <manref name="gpg" vol="1"/>