Hi there --
We typically do tar jobs of entire directories to one of several tape drives. These drives can be DAT, DLT, SDLT, or LTO-4. One example would be the following:
Quote:
LOCATION: /diskarray/stripe7/usr/home
TAPE DEVICE FILE: /dev/rmt/5mn
COMMAND: tar -cvf * /dev/rmt/5mn
|
A new directive in our company has made mandatory encryption of all backups. Therefore, once the tar command shown above is completed, the files on tape would need to be encrypted.
We have openssl installed on our system, and the command syntax that would appear to apply here, using the above example would be as follows:
Code:
openssl des3 -salt -in /dev/rmt/5mn -out /dev/rmt/5mn.des3
After the above is completed, an encryption password would be entered by the administrator.
Is the above procedure the correct method? Also, is there any inherent danger to the tape or drive if the encryption is attempted on either? Thanks.