6 Responses

  1. Ramón Casares
    Ramón Casares · at · · Reply

    I was considering using a backup scheme like yours, but I see two problems:

    1. You cannot see what files are being updated,
    because you just can read the encrypted filenames.
    2. The transmission is slow,
    because rsync is working over the encrypted files, and then
    any small delta in the plain file generates a completely different encrypted file.

    There is another tool, rsyncrypto, that aims to solve the second problem.
    It uses a weaker encryptor that generates similar encrypted files from similar plain files,
    but I cannot say if it is sufficiently strong.


  2. Ramón Casares
    Ramón Casares · at · · Reply

    Yes. For #1 I think the way to go is to use encfsctl, because I prefer encrypting the file names. Nevertheless, I did not do the exercise, because #2 was a deal breaker for me, and I’m still not completely convinced on #2. What will happen if you just simply add one character at the very beggining of the 5 MB file?

    Best regards,

  3. Leveraging syslog for cron scripts
    Leveraging syslog for cron scripts · at ·

    […] I have written a bunch of scripts to automate some tasks, like for example to automate dynamic IP registration in a DNS or more commonly for backup purposes. […]

  4. Wolfram Rösler
    Wolfram Rösler · at · · Reply

    Thanks a lot, this got me started on using encfs to create an encrypted backup of my Nextcloud on a remote server. I wrote an article on how to do it, in case someone’s interested: https://gitlab.com/wolframroesler/back-up-nextcloud/blob/master/local-to-remote.md

Leave a Reply