The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Top Forums > UNIX for Dummies Questions & Answers
Reload this Page Create and pw protect .tar files
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read



Thread: Create and pw protect .tar files
View Single Post in the UNIX and Linux Forums - Click on the Thread or Permalink to View Entire Thread -->
  #4 (permalink)  
Old 06-21-2005
jim mcnamara jim mcnamara is offline Forum Staff  
...@...
  
 

Join Date: Feb 2004
Location: NM
Posts: 5,808
No offense, but I gather you're not a crypto person.

As soon as you said 'secure' I knew there may be a problem. Merely encrypting data with a good two-way encryption scheme does not make it secure. Procedures, physical security, SOX compliance procedures, audting, etc., all contribute to 'secure'.

I've worked with uninformed management, so I know they think having 'unbreakable' two-way encryption is all that's needed. They don't care if the passwords on all the files are the same, or if someone leaves the password taped to a console.

Unless security is more than encryption and includes a large array of things throughout your company, decent two-way encryption is is not going to mediate any security threats. And is just going to cuase you perosnally problems when people lock up files and can't open them.

FWIW: all two-way encryption schemes can be broken with the exception of the so-called one-time pad (Shannons' Theorem if you want to read about it). It might take several years of brute force attack, but they all can be broken.

Short answer: PGP can be broken, if that's what you mean. There are problems with the random number generators used for a lot of implmentations of it.

The (US) NSA currently deems triple-DES encryption schemes and some other related schemes as something we do not want the bad guys to get. ie., NSA has a difficult time with breaking them. So I would go with triple-DES.