I do som uploading to online storage providers but I concerned about security. Does anyone who does this use any particular type of security or encryption.
On Thu, Apr 20, 2023 at 1:06 PM Bill C bill.cu1234@gmail.com wrote:
I do som uploading to online storage providers but I concerned about security. Does anyone who does this use any particular type of security or encryption.
There are different schemes used, depending on the storage provider. You would need to look at the Security Architecture (SecArch) document to determine exactly what is going on.
But in the end, the cloud is just someone else's computer. Act accordingly.
https://duckduckgo.com/?t=ftsa&q=the+cloud+is+just+someone+else%27s+comp...
Jeff
I use Google. I hate anything to do with Microsoft. It is, just someone else's computer.
On Thu, Apr 20, 2023, 1:12 PM Jeffrey Walton noloader@gmail.com wrote:
On Thu, Apr 20, 2023 at 1:06 PM Bill C bill.cu1234@gmail.com wrote:
I do som uploading to online storage providers but I concerned about
security. Does anyone who does this use any particular type of security or encryption.
There are different schemes used, depending on the storage provider. You would need to look at the Security Architecture (SecArch) document to determine exactly what is going on.
But in the end, the cloud is just someone else's computer. Act accordingly.
https://duckduckgo.com/?t=ftsa&q=the+cloud+is+just+someone+else%27s+comp...
Jeff _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
On 20 Apr 2023, at 18:06, Bill C bill.cu1234@gmail.com wrote:
I do som uploading to online storage providers but I concerned about security. Does anyone who does this use any particular type of security or encryption.
I would assume that once uploaded you must assume that the file will get into the wrong hand.
You could encrypt files before uploading. You could only upload files that can be public.
Barry
users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Yes but I am afraid too of encrypting something and then losing the key. Something that isn't going away, we all have that issue.
On Thu, Apr 20, 2023, 1:15 PM Barry barry@barrys-emacs.org wrote:
On 20 Apr 2023, at 18:06, Bill C bill.cu1234@gmail.com wrote:
I do som uploading to online storage providers but I concerned about
security. Does anyone who does this use any particular type of security or encryption.
I would assume that once uploaded you must assume that the file will get into the wrong hand.
You could encrypt files before uploading. You could only upload files that can be public.
Barry
users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
On Thu, Apr 20, 2023 at 1:43 PM Bill C bill.cu1234@gmail.com wrote:
Yes but I am afraid too of encrypting something and then losing the key. Something that isn't going away, we all have that issue.
Have you considered something like the protonmail's proton drive[1]? It might just be a bit better than the usual suspects (google, microsoft, amazon) regarding data privacy, but I do not know if you can automate moving files up and down without using their app or website.
On Thu, Apr 20, 2023, 1:15 PM Barry barry@barrys-emacs.org wrote:
On 20 Apr 2023, at 18:06, Bill C bill.cu1234@gmail.com wrote:
I do som uploading to online storage providers but I concerned about security. Does anyone who does this use any particular type of security or encryption.
I would assume that once uploaded you must assume that the file will get into the wrong hand.
You could encrypt files before uploading. You could only upload files that can be public.
Barry
users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
2023-04-20 19:41 UTC+02:00, Bill C bill.cu1234@gmail.com:
Yes but I am afraid too of encrypting something and then losing the key. Something that isn't going away, we all have that issue.
If you store these files unencrypted on your computer (besides having their encrypted version in the cloud), you may as well store the key there.
On 4/20/23 14:08, Andras Simon wrote:
2023-04-20 19:41 UTC+02:00, Bill C bill.cu1234@gmail.com:
Yes but I am afraid too of encrypting something and then losing the key. Something that isn't going away, we all have that issue.
If you store these files unencrypted on your computer (besides having their encrypted version in the cloud), you may as well store the key there.
That sounds like a terrible idea. If your disk drive fails, now you've lost both your online data _and_ the key to your backup.
2023-04-21 1:36 UTC+02:00, Robert Nichols rnicholsNOSPAM@comcast.net:
On 4/20/23 14:08, Andras Simon wrote:
2023-04-20 19:41 UTC+02:00, Bill C bill.cu1234@gmail.com:
Yes but I am afraid too of encrypting something and then losing the key. Something that isn't going away, we all have that issue.
If you store these files unencrypted on your computer (besides having their encrypted version in the cloud), you may as well store the key there.
That sounds like a terrible idea. If your disk drive fails, now you've lost both your online data _and_ the key to your backup.
If the online version is *the* backup, then you're right, it is.
I thought about putting everything on an encrypted ext4 filesystem. Maybe compressing it and uploading. Kind of a complicated way to do it, but might work.
On Fri, Apr 21, 2023, 3:23 AM Andras Simon szajmi@gmail.com wrote:
2023-04-21 1:36 UTC+02:00, Robert Nichols rnicholsNOSPAM@comcast.net:
On 4/20/23 14:08, Andras Simon wrote:
2023-04-20 19:41 UTC+02:00, Bill C bill.cu1234@gmail.com:
Yes but I am afraid too of encrypting something and then losing the
key.
Something that isn't going away, we all have that issue.
If you store these files unencrypted on your computer (besides having their encrypted version in the cloud), you may as well store the key there.
That sounds like a terrible idea. If your disk drive fails, now you've
lost
both your online data _and_ the key to your backup.
If the online version is *the* backup, then you're right, it is. _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
On 4/21/23 13:35, Bill C wrote:
I thought about putting everything on an encrypted ext4 filesystem. Maybe compressing it and uploading. Kind of a complicated way to do it, but might work.
The problem is that you can't do incremental updates or keep incremental history. You really don't want to be having to transmit and save a full backup every time you have changes that you don't want to lose.
And no, I don't have a clean solution for keeping encrypted backups in the cloud. I do believe that my current backup method (rdiff-backup-2.2.4-2.fc37) is incompatible with that.
On Fri, Apr 21, 2023 at 5:17 PM Robert Nichols rnicholsNOSPAM@comcast.net wrote:
And no, I don't have a clean solution for keeping encrypted backups in the cloud. I do believe that my current backup method (rdiff-backup-2.2.4-2.fc37) is incompatible with that.
Don't know if it qualifies as a "clean solution" as it uses mono, but duplicati easily handles encrypted backups to the cloud.
On Fri, 2023-04-21 at 17:21 -0400, Go Canes wrote:
On Fri, Apr 21, 2023 at 5:17 PM Robert Nichols rnicholsNOSPAM@comcast.net wrote:
And no, I don't have a clean solution for keeping encrypted backups in the cloud. I do believe that my current backup method (rdiff- backup-2.2.4-2.fc37) is incompatible with that.
Don't know if it qualifies as a "clean solution" as it uses mono, but duplicati easily handles encrypted backups to the cloud.
As does Rclone, in the standard repo.
poc
On 4/22/2023 6:52 AM, Patrick O'Callaghan wrote:
On Fri, 2023-04-21 at 17:21 -0400, Go Canes wrote:
On Fri, Apr 21, 2023 at 5:17 PM Robert Nichols rnicholsNOSPAM@comcast.net wrote:
And no, I don't have a clean solution for keeping encrypted backups in the cloud. I do believe that my current backup method (rdiff- backup-2.2.4-2.fc37) is incompatible with that.
Don't know if it qualifies as a "clean solution" as it uses mono, but duplicati easily handles encrypted backups to the cloud.
As does Rclone, in the standard repo.
poc
My main idea here was preventing via an encrypted filesystem the host and those using it from viewing contents and files. There may be no way of doing that unless you simply encrypt the files and upload to storage. I like so many others don't trust online storage. But then there's losing a key <oh no>.
B
On Fri, Apr 21, 2023 at 2:35 PM Bill C bill.cu1234@gmail.com wrote:
I thought about putting everything on an encrypted ext4 filesystem. Maybe compressing it and uploading. Kind of a complicated way to do it, but might work.
Perhaps you can setup a SAN locally, and backup to your own SAN. For backup software, checkout Duplicity.
We use Duplicity to backup our web server at cryptopp.com. We perform a full backup every month, and incremental backups daily. Backups are stored at a friend's company. Duplicity streams it over SFTP during the backup job.
The symmetric key will be the only loose end. It is the "unattended key storage problem." It is a wicked hard problem in computer security. It is a problem without a solution. Keep a copy of the key written down. Store it offline in a safe.
Jeff
-
Andras Simon -
Barry -
Bill C -
Bill Cunningham
-
Go Canes -
Jeffrey Walton -
Mauricio Tavares -
Patrick O'Callaghan -
Robert Nichols