A few thingz


Joseph Basquin


01/08/2021

nFreezer, a secure remote backup tool

So you make backups of your sensitive data on a remote server. How to be sure that it is really safe on the destination server?

By safe, I mean "safe even if a malicious user gains access" on the destination server; here we're looking for a solution such that, even if a hacker attacks your server (and installs compromised software on it), they cannot read your data.

You might think that using SFTP/SSH (and/or rsync, or sync programs) and using an encrypted filesystem on the server is enough. In fact, no: there will be a short time during which the data will be processed unencrypted on the remote server (at the output of the SSH layer, and before arriving at the filesystem encryption layer).

How to solve this problem? By using an encrypted-at-rest backup program: the data is encrypted locally, and is never decrypted on the remote server.

I created nFreezer for this purpose.

Main features:

More about this on nFreezer.

 


 

By the way I just published another (local) backup tool on PyPi: backupdisk, that you can install with pip install diskbackup. It allows you to quickly backup your disk to an external USB HDD in one-line:

diskbackup.backup(src=r'D:\Documents', dest=r'I:\Documents', exclude=['.mp4'])

 


 

Update: many thanks to @Korben for his article:

← Other articles

My personal blog,
Joseph Basquin (Orléans, France)

twitter
email
github

Data / AI / Python consulting and freelancing.

Articles about:
#music
#photo
#opensource
#all

Some of my projects:
BSQN Digital
BigPicture
SamplerBox
Ojourdui
Jeux d'orgues
YellowNoiseAudio