Cloud storage has become ubiquitous in modern society. The most widely-used example, I think, is the one that comes prebundled with our p…
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
much thanks to @gary_host_laptop for the logo design :)
Wow, they recommend nextcloud which doesn’t even support client- side encryption .
My recommendations are usually Tresorit, Mega, and Proton Drive. I dont know of any others that support sharing files with third parties that enforces client- side encryption on everything.
https://nextcloud.com/encryption/
It’s not a big deal if you self-host at home either. You can use SSL for the traffic and LUKS for the storage.
Again, i dont recommend nextcloud because it doesn’t encrypt everything. Same for other cloud providers. I wouldn’t use it unless everything is encrypted client-side and it cannot be turned off.
It is a big deal if you self host. If you server is owned, your data is compromised, because the server can read your data.
To be fair, if your server is taken over, there’s a good chance your other devices have been compromised first/as well, in which case you’re already in trouble.
No way. Servers are easier to compromise because they’re online all the time and by definition exposed to requests from the public internet
You can have a server without a public IP; that’s totally doable. An internal server that’s only accessible from LAN or a VPN is still a server.
Also, the majority of compromises happen because of user error (e.g., someone opens/runs the wrong thing) or an unpatched machine, not because of an exploit in server software/because the machine is always on. This is especially true in the business world where it’s often a combination of human error and the network not being segmented/ACLs not being set properly/etc (lots of cases of human error).
It’s also not that unusual for someone to keep their e.g., desktop always on or their laptop/mobile device in a low power state where it still has network activity despite being “off.”
Yes. In practice, servers are easier to own than computers
Trust no one! Any cloud + rclone crypt. Solved.
How does this compare to borg ?
Ente is really nice for photo storage!
All storage is secure if you encrypt locally first (metadata notwithstanding). Of questionable utility for phone apps (happy to be corrected, some sort of FUSE type filesystem with cached filenames etc. could probably work), but great for offsite backups (preferably using multiple services) of critical data.
Just don’t lose the keys
Except if they lose your data.
Hence multiple services…
More likely they will restrict access to your data
3,2,1
ssh to my bastion.
removed by mod
Ssh over wireguard to a container in my bastion
private-ish
Courtesy of Kagi’s Universal Summarizer’s Key Moments.
Back to the roots: is there a modern remote filesystem &| protocol with support for encryption?