Ari wrote:
> On Thu, 19 Jul 2007 05:53:03 +0200, Ertugrul Soeylemez wrote:
>
>> jc <me@nospam.nett> (07-07-16 18:53:23):
>>
>>>> Maybe I should note that your security concept is completely
>>>> pointless. Either you backup the keys, by what attackers can easily
>>>> get to the plaintext, or you don't backup the keys, turning the
>>>> backups useless in case of data loss.
>>> You'll have to explain this, you're basically saying that file
>>> encryption is worthless. How does backing up the keys expose them to
>>> hackers?
>> If the encryption keys become part of the backup, then what's the point
>> in encrypting?
>>
>> Regards,
>> Ertugrul Söylemez.
>
> Which brings me to a conversation I just had with Moxy. They can't
> backup encrypted files.

I'm missing something. If someone got hold of the backup, with the keys
and the encrypted files, what could they do without a passphrase? Seems
like the files would still be safe given a strong one.


jc