On Sep 18 2018, [email protected] wrote:
> HI, I am wondering about the security problem. If I mount object storage
> with s3ql to public cloud server permanently to keep backups - data
> transmission will leave internal ovh network - what will be the chance to
> decrypt the transmission in the authorization stages.
Assuming there are no bugs in how S3QL does cryptography, you'd have to
break 128-bit AES in order to decrypt the file system data. This is
unlikely.
If there are bugs in S3QL - there's no way to assign a probability to
it. Given a sufficiently severe bug, it may be pretty easy.
If you are talking about the chance of someone intercepting the
credentials to log into the backend server - that's standard SSL with
its standard threats. Nothing special about S3QL here.
> I mean the moment of authorization, login and exchange of keys and
> passwords - some data will not send by ssl. Of course s3ql this is not vpn
> site to site and some data will send unsecure.
All the file system data is protected with symmetric AES encryption, so
there is no need for key exchange etc.
Best,
-Nikolaus
--
GPG Fingerprint: ED31 791B 2C5C 1613 AF38 8B8A D113 FCAC 3C4E 599F
»Time flies like an arrow, fruit flies like a Banana.«
--
You received this message because you are subscribed to the Google Groups
"s3ql" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
