[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

Is VC safe enough to upload backups to the "cloud"

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.

Thread replies: 24
Thread images: 3

File: file.png (39KB, 512x512px) Image search: [Google]
file.png
39KB, 512x512px
Is VC safe enough to upload backups to the "cloud" aka google servers?

The only stuff that could be stolen in my kepass container and its encrypted too but well you can't be paranoid enough
>>
>>59421866
1. Verashit is more vulnerable than truecrypt 7.1a
2. Cloud based services are aids unless you're running your own server
3. Password managers database should never leave your local device
>>
>>59421904
Citation needed on (1)
>>
>>59421904
I keep local offline backups but they can burn or get niggered or something
>>
File: meow.jpg (11KB, 264x264px) Image search: [Google]
meow.jpg
11KB, 264x264px
>>59421866
>old hard drive nears end of life
>add to backup drive pile
>backup to a few hard drives at all times

Why do you need cloud storage? No shitty old computers laying around?
>>
>>59422281
>can burn or get niggered
>>59422349

k
>>
File: myvghbTfw11t76qq2o1_500.gif (435KB, 475x344px) Image search: [Google]
myvghbTfw11t76qq2o1_500.gif
435KB, 475x344px
>>59421866
I just GPG encrypt disk images with Camellia-256.
>>
You fucking retard. Why the shit would you upload any data sensitive enough to be encrypted to the cloud? One day the current encryption algorithms will be weak enough for brute force attacks. The powers that be will simply decrypt your shit.

Do you store your private keys on the cloud too? After all, they are encrypted using your password, right? You're effectively reducing all your security and privacy to that one password.
>>
>>59421987
https://www.grc.com/misc/truecrypt/truecrypt.htm
>>
>>59422281
Truecrypt prevents niggers from accessing your shit. Putting your encrypted shit on a cloud server is absolutely fucking retarded
>>
>>59423392
you're autistic
>>
>>59421866
uploading containers like that is retarded, might as well just use 7z, better something like borg/duplicity for incremental backups, or an ecryptfs/encfs stack
>>
it will be fine, just use a 20+ char password
>>
>>59423392
You already got BTFO in the last thread.

>>59413923
>>59417124
>>
>>59421866
Why the fuck would you upload anything to Google's servers for any reason? Just use NextCloud or OwnCloud if you need something like that.
>>
>>59422403
by the time that shit like RSA 4096 is broken, i would likely be dead or all those passwords would be deprecated.

get real nigger.
>>
>>59423412
But I lose it
>>
>>59423665
>just upload it to servers you don't have

Great response
>>
>>59423412
I encrypt my files with PGP and then upload them to Google drive. Explain how can they access my shit without my private key and my password.
>>
>>59425871
Google is one of the largest tech companies in the world. They have a large amount of storage and processing power. Don't gamble. You don't know what they have, or what they're generating. Just a little food for thought.
>>
>>59423572
cryptsetup/LUKS has been audited by hundreds of professional security outfits. I know Optiv(Accuvant) and NCC Group did it numerous times for clients over the years because governments request these things on a regular basis so do bigcorps. Modern security auditing is more risk insurance than anything, and it doesn't mean at all the software is 'safe' just the bare minimum of competence has checked this software for obvious problems and found none, ergo we can insurably use it for acceptable risk.

>>59425871
Do you have a physical key like Ubikey or Cryptokey because if your priv key is stolen then there's some sweet history to go and decrypt from the beginning of time.

CAST5's implementation is also likely vulnerable to timing attack related to cache or data-dependent operations with it's 64 bit block size, again a physical key would be better.

Problem is the only acceptable file encryption for storing "in the cloud" is PGP (CAST5) or ChaCha20 using LibreSSL. XTS (Veracrypt containers, LUKS containers) you would not want to store in any kind of cloud ever because XTS only has security guarantees for the confines of disk geometry meaning you can't flip bits then wait for the mark to reuse the encrypted container, opening up a blind shell or god knows what else.
>>
>>59425996
I've never understood the reasoning behind the use of CAST5 over AES in pgp
>>
>>59421904
>not reading the vault 7 docs
Nigger
>>
Veracrypt is funded by the CIA venture capital firm In-Q-Tel.

I thought that was interesting.
Thread posts: 24
Thread images: 3


[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.