[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Remote Backup Tools on FW-1 ?

To: Thomdi KillerSwap <thomdi@hotmail.com>
Subject: RE: [FW1] Remote Backup Tools on FW-1 ?
From: Dave Wreski <dave@nic.com>
Date: Sat, 24 Apr 1999 20:51:54 -0400 (EDT)
Cc: fw-1-mailinglist@lists.us.checkpoint.com


> Does someone do backups like that ???? or have any other solution to 
> give us ???

The best way (I think) to do it would be to do the following:

1.  Create ssh keys for a new user, say, fwuser.
1.  Write a cron script that creates a tar file of your fw files as root.
2.  Use pgp, and a 'fwuser' public key, to encrypt the files, and store them in
    a fwuser-only readable directory.
3.  On the secure box within the firewall, use scp to copy the files from
    firewall.

You could use tcp_wrappers and rcp to copy the files if you can't use ssh, but
be sure there is a specific rule on your firewall for this, and you are using
tcp_wrappers.  Also, don't copy the files as root.  Create a user with limited
privilages to do this.

Regards,
Dave


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] Upgrade path from Single Gateway License..
Next by Date: RE: [FW1] Remote control on FW-1 ?
Prev by thread: [FW1] Remote Backup Tools on FW-1 ?
Next by thread: [FW1] Remote control on FW-1 ?
Index(es):
- Date
- Thread