From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail.saout.de ([127.0.0.1]) by localhost (mail.saout.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5sm8GzwLFzoZ for ; Thu, 1 Aug 2013 22:46:59 +0200 (CEST) Received: from smtp-out-03.shaw.ca (smtp-out-03.shaw.ca [64.59.136.139]) by mail.saout.de (Postfix) with ESMTP for ; Thu, 1 Aug 2013 22:46:58 +0200 (CEST) Message-ID: <51FAC6E4.4090409@infrabit.net> Date: Thu, 01 Aug 2013 13:36:52 -0700 From: infrabit MIME-Version: 1.0 References: <20130801003458.GA1093@tansi.org> <51FA1198.6040406@gmail.com> <51FA3B5E.6030800@gmail.com> <20130801133442.GA10436@tansi.org> <51FA74C3.8010208@logtenberg.eu> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Re: [dm-crypt] dm-crypt "inverted" usage (i.e. exporting an "encrypted" image of a block device) List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: dm-crypt@saout.de On Thu, 1 Aug 2013 19:17:00 +0300, Ciprian Dorin Craciun wrote: > I found that the best way to "clone" the > contents of a file system (minus any meta-data like ACL, extended > attributes, etc.) is via `cpio` over `ssh`. It beats `rsync` [...] ...or tar+ssh and if you can afford to trade security (although from your posts I wouldn't) use a weak cipher f.e. arcfour (use case: private network where you only have ssh login to servers). As all others posters suggested you will shoot yourself in the foot. It's not about if, but when.