this post was submitted on 05 Jan 2024
38 points (100.0% liked)
Free and Open Source Software
17916 readers
94 users here now
If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Nextcloud doesn't have e2ee. Use something better.
It doesn't matter if you host it yourself. You should still have full disk encryption (LUKS on Linux) enabled on your server though.
It does matter if someone can break into your House
If someone breaks into my house they have a lot more to worry about than me hosting pirated content to myself. Hope they can dodge supersonic rocks!
If physical security concern you, you should encrypt your disk, but e2e isn't really useful if you host your instance and use a VPN to connect (it's not necessary even if you trust the 3rd party that host your data, actually)
By e2e I mean client side. Someone who gets physical access to the server should not be able to view your files.
Mmm... I still think you mean server side: if someone seize your server shouldn't be able to read your file. If someone have physical access to your server while it is still turn on and not rebooted, it will have access to your files even with e2e turned on. E2e encrypt data while it is transfered from client to server (in case of nextcloud)
Thats not true. For it to be e2e the encryption must be done client side, by definition. The keys are stored on the client. The server cannot decrypt the data.
Nextcloud does not offer e2ee.
You're right, I'm dumb. Nextcloud has a e2e plugin, but you have to lose a lot of functionality, and I still think it isn't worth it if you host your own instance
That's why I recommend full disk encryption. If someone steals your hard drives, the data is inaccessible without your password.
That doesn't apply to servers. Unless you turn off the server every time you leave the room.