New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Encrypting data sent to an untrusted storage provider
I want to use a storage provider whom I don't want to be able to look at my data. So I want to encrypt all data on the client before sending it to the server.
Right now I use ecryptfs with a SMB share to achieve this but performance is not great.
Are there better options?
I see that bitlocker can be used with samba and there's a bitlocker client for Linux (but it costs $20).
Comments
Use something like borgbackup to send/store (locally) encrypted backups to the remote host. Otherwise, there's no really reliable way to prevent the provider from snooping within your KVM. But of course this is not going to be a conventional "mountable" storage option.
Does it support RClone? RClone Crypt is perfect for this usecase.
Some cloud-compatible, FUSE based encrypted filesystems:
Here's a feature comparison (scroll all the way down to the summary) and a detailed performance comparison.
export an iSCSI target from the server, then use encryption on the client/initiator side?
You can try EncFS in its "reverse" mode, which presents an encrypted view of your plain filesystem, then you can rsync from that to the VPS.