On Tue, 2016-04-05 at 12:09 -0400, tom-...@bgp.nu wrote: > > On Apr 5, 2016, at 11:52 AM, Valerio Bellizzomi <vale...@selnet.org> wrote: > > > > On Mon, 2016-04-04 at 14:00 -0400, Tom Easterday wrote: > >> Always good to have a local backup as well, but offsite backup is > >> essential if you really care about the data. With CrashPlan there is an > >> option, I believe, where they hold the key as well and can therefore > >> decrypt data if you happen to lose the key. > > > > I am not sure how to take this. It appears to me that if they hold the > > key, they hold your power, and I am not sure how this is good for your > > data security allowing them to look at your data. > > Agreed, and that is why I choose to hold the key myself. But, if you are > willing to trust the company with your key (and hence data) and are afraid > you will lose your key then that is an option for you. You can think of the > company hosting your data like a bank. You are willing to give your money to > a bank. They could choose to steal your money at any moment (and it has > happened), but that isn’t the normal course of business.
well ok, but I am more obligated than willing to give my money to a bank, so I can understand if you chose that option, > >> However, making sure you don't lose the key is not that difficult. I have > >> the key in three locations (devices) so losing the key would be extremely > >> unlikely. > > > > but it can also be stolen in 3 different places :-) > > True that, if they can figure out the sentence that locks my password manager > :-) > > -Tom Beware about that, password managers get cracked too :-) ------------------------------------------------------------------------------ _______________________________________________ Emc-users mailing list Emc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/emc-users