Fossil SCM

Factored the iteration count out of the encrypted backup solution in backup.md, so it isn't repeated between the backup and restore cases.

wyoung 2020-12-13 05:32 trunk
Commit fc300d5a9aaeb54745fc466492948611d63439bf4e4d67a84d138a6f89438a1c
Parent 0872ecbef7060aa…
1 file changed +3 -2
~ www/backup.md
M www/backup.md
+3 -2
--- www/backup.md
+++ www/backup.md
@@ -201,14 +201,15 @@
201201
 of noise to anyone without the key:
202202
203203
 ----
204204
205205
 ```shell
206
+iter=52830
206207
 pass="h8TixP6Mt6edJ3d6COaexiiFlvAM54auF2AjT7ZYYn"
207208
 gd="$HOME/Google Drive/Fossil Backups/$bf.xz.enc"
208209
 fossil sql -R ~/museum/backups/"$bf" .dump | xz -9 |
209
- openssl enc -e -aes-256-cbc -pbkdf2 -iter 52830 -pass pass:"$pass" -out "$gd"
210
+ openssl enc -e -aes-256-cbc -pbkdf2 -iter $iter -pass pass:"$pass" -out "$gd"
210211
 ```
211212
212213
 ----
213214
214215
 If you’re adding this to the first script above, remove the
@@ -247,11 +248,11 @@
247248
 it, but it’s worth showing it because there are some subtleties to take
248249
 care of. If all variables defined in earlier scripts are available, then
249250
 restoration is:
250251
251252
 ```
252
-openssl enc -d -aes-256-cbc -pbkdf2 -iter 52830 -pass pass:"$pass" -in "$gd" |
253
+openssl enc -d -aes-256-cbc -pbkdf2 -iter $iter -pass pass:"$pass" -in "$gd" |
253254
 xz -d | fossil sql --no-repository ~/museum/restored-repo.fossil
254255
 ```
255256
256257
 We changed the `-e` to `-d` on the `openssl` command to get decryption,
257258
 and we changed the `-out` to `-in` so it reads from the encrypted backup
258259
--- www/backup.md
+++ www/backup.md
@@ -201,14 +201,15 @@
201 of noise to anyone without the key:
202
203 ----
204
205 ```shell
 
206 pass="h8TixP6Mt6edJ3d6COaexiiFlvAM54auF2AjT7ZYYn"
207 gd="$HOME/Google Drive/Fossil Backups/$bf.xz.enc"
208 fossil sql -R ~/museum/backups/"$bf" .dump | xz -9 |
209 openssl enc -e -aes-256-cbc -pbkdf2 -iter 52830 -pass pass:"$pass" -out "$gd"
210 ```
211
212 ----
213
214 If you’re adding this to the first script above, remove the
@@ -247,11 +248,11 @@
247 it, but it’s worth showing it because there are some subtleties to take
248 care of. If all variables defined in earlier scripts are available, then
249 restoration is:
250
251 ```
252 openssl enc -d -aes-256-cbc -pbkdf2 -iter 52830 -pass pass:"$pass" -in "$gd" |
253 xz -d | fossil sql --no-repository ~/museum/restored-repo.fossil
254 ```
255
256 We changed the `-e` to `-d` on the `openssl` command to get decryption,
257 and we changed the `-out` to `-in` so it reads from the encrypted backup
258
--- www/backup.md
+++ www/backup.md
@@ -201,14 +201,15 @@
201 of noise to anyone without the key:
202
203 ----
204
205 ```shell
206 iter=52830
207 pass="h8TixP6Mt6edJ3d6COaexiiFlvAM54auF2AjT7ZYYn"
208 gd="$HOME/Google Drive/Fossil Backups/$bf.xz.enc"
209 fossil sql -R ~/museum/backups/"$bf" .dump | xz -9 |
210 openssl enc -e -aes-256-cbc -pbkdf2 -iter $iter -pass pass:"$pass" -out "$gd"
211 ```
212
213 ----
214
215 If you’re adding this to the first script above, remove the
@@ -247,11 +248,11 @@
248 it, but it’s worth showing it because there are some subtleties to take
249 care of. If all variables defined in earlier scripts are available, then
250 restoration is:
251
252 ```
253 openssl enc -d -aes-256-cbc -pbkdf2 -iter $iter -pass pass:"$pass" -in "$gd" |
254 xz -d | fossil sql --no-repository ~/museum/restored-repo.fossil
255 ```
256
257 We changed the `-e` to `-d` on the `openssl` command to get decryption,
258 and we changed the `-out` to `-in` so it reads from the encrypted backup
259

Keyboard Shortcuts

Open search /
Next entry (timeline) j
Previous entry (timeline) k
Open focused entry Enter
Show this help ?
Toggle theme Top nav button