I have the following setup:
Windows rsync -> ssh -> rsync Linux
Each user has a different ssh key so only the user and the Linux admin can access the user's files on the server. The files are not encrypted on the server with that method.
Now, I would like to build on top of that solution and make sure only the user himself can access his files and not the admin (root) of the Linux server.
At that point, is the only solution: encryption on the client then push to server, how can you use rsync when the files are already encrypted on the client to start with.
Is there a way to encrypt a volume on the server or a folder with that folder only accessible by the user (using some key).
Any suggestions ?
Laurent
Best Answer
You are looking for duplicity.
Duplicity creates an encrypted, compressed backup of the input data on the client and transfers it via librsync / ssh. It creates incremental backups, so that it can still transfer the delta with minimum bandwidth consumption despite using encryption. The nice side effect is that you can do daily backups and still access the version of n days ago.