Fwd: BRU, tape drives and XServe

• Subject: Fwd: BRU, tape drives and XServe
• From: "Kyle Sluder" <email@hidden>
• Date: Tue, 11 Dec 2007 19:35:19 +0000
• Delivered-to: email@hidden
• Delivered-to: email@hidden
• Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; bh=bfcqDa0f0p+mVH2dmDqTxiQFO4y8blj9sZuf/N63w+8=; b=Hnf5RlpTx9uT8Wiwfcdt1voD4o77SVK2uzsKq9TNiO1LRF6iS0TYwmJ1uVBCpyCjV/l2WbgtBuy9Pee5obW+vUZQzWz4FinC1XKk9rJPqimKw++54jIaFIGsVqOJXNhjr8fOBHJac/DoWIctiomiD1d2gMQ6W454Cig/3sTpbMU=
• Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=QkHko7uGli2aTS9XVfaxnobEldfDxaLFoSe+D/9VE3tCi+FVsX+5UfrHw+Suc5Vt+6KYXDgL6hcjz4IbwP/fidEmtcBe51sSarrELUTjH6lEzsru2Ldo9231J2nFqN4EFYa/fZfRsg3p864c0JQ4LAYZPt+Rviv4TFlMOcKVsZI=

---------- Forwarded message ----------
From: Kyle Sluder <email@hidden>
Date: Dec 11, 2007 7:34 PM
Subject: Re: BRU, tape drives and XServe
To: Ed Pastore <email@hidden>
Cc: Josh Wisenbaker <email@hidden>, Mac OS X Server Admin List
<email@hidden>


Not entirely sure if this is part of the reasoning (there are much
more immediate architectural issues to deal with) but using TM on the
contents of an encrypted image (rather than the image itself) would
make it possible to execute a known-plaintext attack to retrieve the
password.

--Kyle Sluder


On Dec 11, 2007 6:37 PM, Ed Pastore <email@hidden> wrote:
> On Dec 11, 2007, at 1:21 PM, Josh Wisenbaker wrote:
>
> >> I've been wondering why Apple imposed that restriction, as I
> >> cannot identify a technological limitation that would preclude
> >> active backups (or TM browsing) by a logged-in FV user. I haven't
> >> played with TM (or 10.5) in my office much, but on my personal
> >> computer I have noticed that I can easily mount the diskimage on
> >> my FV drive and browse its contents. So if I can access the image,
> >> why can't Time Machine?
> >
> > TM does FileVault backups like it does as otherwise your TM disk
> > would be a nice, unencrypted, history of all your data.
>
> I understand why it uses an encrypted image. What I don't get is why
> it cannot read or write from/to that image when I am logged in. I can
> access that image from the Finder... I would think TM could acquire
> my privileges and access it as well.
>
> > If you recreate your FileVault on 10.5 it should be a tiny bit
> > faster as it will use a sparsebundle image rather than a vanilla
> > sparse image.
>
> IIRC, Time Machine forced me to update my FileVault (not an easy
> task, since rarely is there enough free space on a power user's
> personal laptop to de-encrypt and re-encrypt the primary user) before
> it would consider backing up my user data. It gave a cryptic message
> to that effect *once* and then behaved as if it was backing up
> everything, while in fact it was backing up the system, but not my
> account.
>
>  _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Macos-x-server mailing list      (email@hidden)
> Help/Unsubscribe/Update your Subscription:
> http://lists.apple.com/mailman/options/macos-x-server/kyle.sluder%email@hidden
>
> This email sent to email@hidden
>
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

• Prev by Date: Re: cron vs launchd
• Next by Date: [10.5] Kerberos database
• Previous by thread: Re: BRU, tape drives and XServe
• Next by thread: Re: BRU, tape drives and XServe
• Index(es):
  • Date
  • Thread