mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

thinko

Browse source
This commit is contained in:
Joey Hess 2011-03-28 13:49:48 -04:00
parent 3162a724f1
commit bd40e0c777
1 changed files with 4 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

7
doc/special_remotes/Amazon_S3.mdwn
View file

@ -27,13 +27,14 @@ the data, should be the only clues to what type of data you are storing in
S3. S3.
[[!template id=note text=""" [[!template id=note text="""
This scheme was originally developed by Lars Wirzenius at al [for Obnam](http://braawi.org/obnam/encryption/). This scheme was originally developed by Lars Wirzenius at al
[for Obnam](http://braawi.org/obnam/encryption/).
"""]] """]]
The data stored in S3 is encrypted by gpg with a symmetric cipher. The The data stored in S3 is encrypted by gpg with a symmetric cipher. The
passphrase of the cipher is itself checked into your git repository, passphrase of the cipher is itself checked into your git repository,
encrypted using one or more gpg public keys. This scheme allows new public encrypted using one or more gpg public keys. This scheme allows new private
keys to be given access to a bucket's content, after the bucket is created keys to be given access to a bucket's content, after the bucket is created
and is in use. It also allows revoking compromised public keys without and is in use. It also allows revoking compromised private keys without
having to throw out the contents of the bucket. The symmetric cipher having to throw out the contents of the bucket. The symmetric cipher
is also hashed together with filenames used in the bucket, obfuscate is also hashed together with filenames used in the bucket, obfuscate
the filenames. the filenames.