When using EncFS to encrypt a file on a VPS, will the file be stored encrypted or unencrypted in the automated back-ups taken by the host? (Assuming that the file is unlocked when the back-up is taken)
Asked
Active
Viewed 401 times
1 Answers
0
It depends on what the automatic backups are doing.
So, with EncFS, you will have something like /home/.encrypted as the ciphertext. When you run EncFS, you will do a FUSE mount of the plaintext as /home/unencrypted (or whatever).
If the automated backup is doing, say, volume snapshots, so it's just looking at what you have physically have on the disk, it should only be picking up the ciphertext.
If the backup process is seeing what mounts you have, and running across those (trivially, something like tar cf /dev/tapedrive / or something equivalent), it may pick up the plaintext.
You will have to ask your service provider to see what they're doing, if they're picking up mounted filesystems other than what's physically present. If they are picking up all mounted filesystems (I think this would be unlikely), the plaintext may be getting backed up.
(I suppose you can also look at the backup/restore interface they provide you with, and see if you can restore plaintext)
cjc
- 24,916
- 3
- 51
- 70