Mailing List Archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[tlug] search for encrypted information exchange



Hi,


i am looking for a solution to exchange informations/files among
some sysadmins, meeting these requirements:

- easy information/file exchange should be possible
- authenticity of the data should be assured
- the data should be transmitted encrypted
- the server hosting the data should not be trusted
- access to the information from linux and windows
- authentication required bevore accessing the data, not everyone 
is allowed to access the data
- nice to have: versioning of the data


Idea 1:

- setting up a simple wiki with apache/php, dokuwiki
- encryption on the net with TLS/ssl, authenticity with TLS/ssl cert
- easy access to the information/data via webfrontend, from windows
and linux
- versioning of the data implemented by the wiki
- problem: having to trust the server hosting the wiki, its in the
clear on the harddisk there.  Having it in an encrypted imagefile
there isnt any better since its mounted unencrypted while the wiki
is served.


Idea 2:

- setting up a nfs/smb shared directory.  All sysadmins generate
a gnupg private/public keypair.  The information in the shared 
directory is encrypted with everyones public-key, that way everybody
can read the encrypted data, edit it, encrypt that new version again
with the pubkeys.
- having to consider locking so people to not edit a file at the
same time
- solution is much more inconvinient than the wiki-based one


Idea 3:

- sharing a directory via nfs/smb.  Sysadmins having each one public/
private keypairs, or all the same shared secret.  Encryption of the
files on the share with ecryptfs.  Unfortunatelly havent seen a win-
dows port.. so wintendo-users easiest way would be to start up a
emulated linux from harddisk or usb-stick.  Not really nice..


My problems could also be solved by using a git or subversion, but
those have a cleartext backend so one has to trust the server...



Any thoughts on that?

Greetings from sunny Munich, Christian


Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links