teaminternet / ops-encrypted-timemachine Goto Github PK
View Code? Open in Web Editor NEWSetup encrypted Timemachine Backup through CLI
Setup encrypted Timemachine Backup through CLI
Known issues
The GUI doesn't show correctly, that the backup is encrypted. Sometimes it works
sometimes not and seem to be related to the "disk image password" in the keychain.
I didn't find any solution for it. As a workaround you can check with the hdiutil command
if the Sparsebundle is encrypted correctly:
oh, did you know that the gui doesn't even show correctly that the backup is NOT encrypted when it should?
I have a user (found via checking band files for encryption) for which the gui is telling the backup is encryped and even in time machine dialogue it's telling encryption is active - but on disk it's unencrypted. no clue how this happened, but the user did setup time machine quite normally and did not use any addon tool
i think this is a bummer, isn't it ?
In the unlikely case that anyone comes across this, there is another way to do this, by appropriating an existing backup. You'll need an another server that can be used as a destination, but then copy it to your real destination. Note that I haven't verified the stability of this, so caveat emptor etc.
System
keychain, associating the encryption password with the sparse bundle and your Hardware UUID. If your server has a password (NOT the sparse bundle encryption password), it will first ask you to login to access the disk. Although this password will be saved in your keychain you can delete it later if required.sudo tmutil setdestination -ap protocol://user[:pass]@host/share
. The -a
flag appends the destination instead of replacing all current destinations. The -p
flag causes the password for the server to be prompted for (NOT the sparse bundle encryption password). Although you can embed the server password in the URL instead (i.e: -a protocol://user:pass@host/share
) you probably shouldn’t. If you’re repurposing an old AirPort Extreme as a server, use afp
as the protocol (it may work with smb
as well, I don’t know). In the case of AirPort Extreme, where user names aren’t used, use a dummy name (anything will do, for example afp://[email protected]/share
).Backup Frequency
in the Options… page to Manually
(you’ll change it back later)tmutil destinationinfo
and make a note of the ID
field value for this new destination.System
keychain. Sort by Date Modified
, and you should see 3 new entries. Open the one beginning with Time Machine encryption password for…
. This is the sparse bundle encryption password, but it is still associated with the old destination. Replace the value in the Account
field with the new destination ID you made a note of in the previous step. Any other text fields (Name
/Where
) seem to not matter.System
keychain. Its Kind
is Time Machine Network Password
. There’s no harm in leaving it there however.A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.