Advice Request How do you encrypt your data before cloud backup ?

[DDE_Server]

Honestly, I didn´t try Cryptomator yet because I prefer to keep things as simple as possible and don´t want to use several tools to achieve something. From my perspective I would say that the concepts are different except the fact that both applications can encrypt your data safely. But why not try both Duplicati and Cryptomator so you can see yourself which concept better fit your needs?

Thanks for your response.
yes i am doing that right now as i am trying cryptomator and it seems good how ever it generate master key file with vault when it is being locked in the same of vault path which isn't good (i want to depend only on the password and donot want to keep those files in the cloud) . i may give duplicti a try
but could you explain how to setup VPS and which cloud may support this feature also if it is free or premium ??

 

[HarborFront]

yes i was thinking to buy another one (i had already 2 TB HDD i think i may another buy one
what about password manager what do you use ??

If you have 100 passwords or more then use one. If you have less I'll suggest you just type it on a Word document and save it on an external device will do.

Remember, one more software means one more surface attack vector

 

[HarborFront]

i am also backup photos/important small files but i think it may need some sort of encryption before uploading. i became paranoid about that after mega accident which for sorry i am using

The 773 Million Record "Collection #1" Data Breach

Many people will land on this page after learning that their email address has appeared in a data breach I've called "Collection #1". Most of them won't have a tech background or be familiar with the concept of credential stuffing so I'm going to write this post for the masses

www.troyhunt.com

For photos and videos.

If you use any from those big guys like MS, Google, Dropbox, Apple etc they'll scan your photos and videos

You can don't encrypt (e.g. photos with only scenary, animals, plants, insects, city scenes etc) if you want to share them with family members, friends, colleagues etc. It's advisable to encrypt those photos/videos where your face is in them for these can be abused unintentionally. You don't want to see your face appearing in some porn sites or with a group of terrorists one day, right?

Storing photos/videos externally on your SSD/HDD is the safest (unless you lost it) but they are troublesome to share.

For data files it's always best to encrypt before uploading to the cloud

Can select a free cloud storage provider from here

Advice Request - Safest cloud storage site

I cannot recommend MEGA highly enough! 2048bit encryption Cant believe some still use things like Dropbox etc. :ROFLMAO:

malwaretips.com

2020 reviews of cloud storage providers here

5 Most Secure Cloud Storage Picks in 2024: Best Secure File Storage

One major concern when storing files in the cloud is security. Here are the most secure cloud storage services that will keep your data safe.

www.cloudwards.net

 

[DDE_Server]

If you have 100 passwords or more then use one. If you have less I'll suggest you just type it on a Word document and save it on an external device will do.

Remember, one more software means one more surface attack vector

i export regularly passwords from true key password manager in addition to other passwords to CSV file then import them into keepass and encrypt them then put them on external hard drive

 

[DDE_Server]

For photos and videos.

If you use any from those big guys like MS, Google, Dropbox, Apple etc they'll scan your photos and videos

You can don't encrypt (e.g. photos with only scenary, animals, plants, insects, city scenes etc) if you want to share them with family members, friends, colleagues etc. It's advisable to encrypt those photos/videos where your face is in them for these can be abused unintentionally. You don't want to see your face appearing in some porn sites or with a group of terrorists one day, right?

Storing photos/videos externally on your SSD/HDD is the safest (unless you lost it) but they are troublesome to share.

For data files it's always best to encrypt before uploading to the cloud

Can select a free cloud storage provider from here

Advice Request - Safest cloud storage site

I cannot recommend MEGA highly enough! 2048bit encryption Cant believe some still use things like Dropbox etc. :ROFLMAO:

malwaretips.com

2020 reviews of cloud storage providers here

5 Most Secure Cloud Storage Picks in 2024: Best Secure File Storage

One major concern when storing files in the cloud is security. Here are the most secure cloud storage services that will keep your data safe.

www.cloudwards.net

yes i encrypt specific files as you said such as photos and minor small files

 

[dinosaur07]

Thanks for your response.
yes i am doing that right now as i am trying cryptomator and it seems good how ever it generate master key file with vault when it is being locked in the same of vault path which isn't good (i want to depend only on the password and donot want to keep those files in the cloud) . i may give duplicti a try
but could you explain how to setup VPS and which cloud may support this feature also if it is free or premium ??

Look here more info about your query:

Why is the masterkey stored in the cloud?

Inside the storage location of a Cryptomator vault, you will find a file called masterkey.cryptomator. This file is stored in the cloud to allow convenient access to a vault on different devices. What does this file contain? This file contains encrypted data, which is needed to derive the...

community.cryptomator.org

 

[DDE_Server]

Look here more info about your query:

Why is the masterkey stored in the cloud?

Inside the storage location of a Cryptomator vault, you will find a file called masterkey.cryptomator. This file is stored in the cloud to allow convenient access to a vault on different devices. What does this file contain? This file contains encrypted data, which is needed to derive the...

community.cryptomator.org

Thanks for the link i will check it
Edit : i expected that as i tried to delete these files and vault is deleted from the program when copy them back the locked vault appeared again

 

[dinosaur07]

Thanks for the link i will check it
Edit : i expected that as i tried to delete these files and vault is deleted from the program when copy them back the locked vault appeared again

Try to backup the master key on your disk drive or external storage as well to be safer.

 

[ForgottenSeer 85179]

Then you didnot depend on online password manager such as 1password or LastPass only offline database created by keepass ??

Yes only offline because online isn't a secure way for that, it only increase attack surface, isn't available when service is offline/ network connection is corrupt and leaks are happening too much

Online only is good for better comfort, not security

 

[mkoundo]

For uploading a backup to online storage I personally use gpg as it is open source and has been around for many years. Its a tried and tested solution. Works ok for a up to a few hundred MB and then it started to become tedious.

The GNU Privacy Guard

For usb storage you could use the password protection built into Macrium Reflect, or even better, you could make use of windows bitlocker and MR can backup in a bitlocked state.

It's our business to protect your data

Complete data security is more important than ever. Whether you’re protecting your home or business PCs, Macrium has a range of reliable solutions for you...

www.macrium.com

 

[TairikuOkami]

7zip. I used to use Axcrypt, till its normal and safe version (key file along with the password) was discontinued. It is more like Veracrypt now.

 

[DDE_Server]

7zip. I used to use Axcrypt, till its normal and safe version (key file along with the password) was discontinued. It is more like Veracrypt now.

yes AXcrypt was fantastic software. small and very efficient but development was very slow

 

[Thales]

Simple. Don't need any special software. lol
Bandizip, no compression, no split, AES password protected file.

 

[Azure]

I had used the free version with Dropbox. It worked well.

Supported Providers

Boxcryptor supports more than 30 cloud storage providers

www.boxcryptor.com

 

[DDE_Server]

For uploading a backup to online storage I personally use gpg as it is open source and has been around for many years. Its a tried and tested solution. Works ok for a up to a few hundred MB and then it started to become tedious.

The GNU Privacy Guard

For usb storage you could use the password protection built into Macrium Reflect, or even better, you could make use of windows bitlocker and MR can backup in a bitlocked state.

It's our business to protect your data

Complete data security is more important than ever. Whether you’re protecting your home or business PCs, Macrium has a range of reliable solutions for you...

www.macrium.com

i will install this utility and work with it . it seem simple and integrate well with cmd in windows Thanks for recommendation

Simple. Don't need any special software. lol
Bandizip, no compression, no split, AES password protected file.

yes i have the same option in both 7Zip/Winrar)
i want to know which is more stronger GPG or AES (i read little bit about both but it some how complicated - cryptography is science by itself )

 

[DDE_Server]

I had used the free version with Dropbox. It worked well.

Supported Providers

Boxcryptor supports more than 30 cloud storage providers

www.boxcryptor.com

Thanks for the link
so to list the suggested software (integrated with some cloud providers solutions:

1. Dupliciti.
2. cryptomator.
3. boxcryptor.

stand alone tools could be used before uploading files to the cloud:

1. GNU Privacy Guard (simple GPG encryption utility with cmd integration).
2. 7ZIP/Winrar/Bandizip general archiving software with AES encryption through password protection feature.

 

[mkoundo]

i want to know which is more stronger GPG or AES (i read little bit about both but it some how complicated - cryptography is science by itself )

GPG uses AES as well as several other ciphers (some better than others). You can choose the one you like. In the latest gpg installation you get the following ciphers:
IDEA
3DES
CAST5
BLOWFISH
AES
AES192
AES256
TWOFISH
CAMELLIA128
CAMELLIA192
CAMELLIA256

I prefer AES256.

 

[DDE_Server]

GPG uses AES as well as several other ciphers (some better than others). You can choose the one you like. In the latest gpg installation you get the following ciphers:
IDEA
3DES
CAST5
BLOWFISH
AES
AES192
AES256
TWOFISH
CAMELLIA128
CAMELLIA192
CAMELLIA256

I prefer AES256.

ooh that good combination of encryption algorithms . i must install this tool and try it . is it trusted ?? digitally signed or not . it seems i will be happy clicker person

 

[mkoundo]

ooh that good combination of encryption algorithms . i must install this tool and try it . is it trusted ?? digitally signed or not . it seems i will be happy clicker person

is it trusted??

that's the million $$ question when it comes to encryption.
See for example this story: Spying scandal shatters Swiss reputation for neutrality

Personally i use it because I know it's been independently audited/researched many times. It's been around for 20+ years. If it had been cracked, most likely the news would be on the internet by now.
It's widely available (comes preinstalled on most linux flavours). Just be sure to download it from the gpg site and check the digital sigs.

It's strong enough for my purposes....

 

[DDE_Server]

is it trusted??

that's the million $$ question when it comes to encryption.
See for example this story: Spying scandal shatters Swiss reputation for neutrality

Personally i use it because I know it's been independently audited/researched many times. It's been around for 20+ years. If it had been cracked, most likely the news would be on the internet by now.
It's widely available (comes preinstalled on most linux flavours). Just be sure to download it from the gpg site and check the digital sigs.

It's strong enough for my purposes....

i am excited to try it . anything embedded with Linux is trusted for me