Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - maskim

Pages1
#1
18.1 Legacy Series / Re: [18.1.10] Nextcloud Backup Issues
July 04, 2018, 05:23:31 PM
Hi,

Fabian, you are assuming that everyone is owning the Owncloud/Nexcloud instance they are using, but it's not always the case.
For example, I would like to use an instance "in the cloud" that I do not own, in order to have easy off-site backup.

I will do it another way (encrypt the encrypted backup), because the solution provided does not fit my needs.

Anyway, I tried 3 times, and I'm not able to restore a backup sent to Nexcloud. I have created an application password (5 groups of 5 characters separated by -). I saved it in my password vault.
My opnsense is able to connect/upload files, but I'm unable to restore them using the password. Each time I've got the following error (after checking "Configuration file is encrypted." and entering the password 2 times):
"The uploaded file does not appear to contain an encrypted OPNsense configuration."

The password in my vault is correct, I'm able to use it to connect to the the Nexcloud instance.

Has anyone been able to restore an Nexcloid/owncloud backup? Am I doing something wrong? I did the test with OPNsense 18.1.11.
#2
18.1 Legacy Series / Re: [18.1.10] Nextcloud Backup Issues
June 26, 2018, 01:02:42 PM
Hi,

I've just switched from Sophos UTM to Opnsense and I really like it.
But I have exactly the same issues as dudeman21 with Nexcloud Backup.

1- The backups are encrypted but I can't find which password/key is used to encrypt them.
Reading the source code, it seems that the password used to connect to nexcloud is the used to encrypt the backup.

In my opinion, the passwords should be different:
  - As pointed by dudeman21, Application passwords in Nexcloud are used one time and then forgotten. A lot of people will not be able to restore the backup if they are not aware that they must save this password for restoring the backup
  - The application password is generated on Nexcloud and known by the Nexcloud instance. I don't want that the administrator of the Nexcloud instance be able to decrypt the backup because he can intercept the password used to authenticate on Nexcloud.


2- The timestamp of 5 backups, done during an interval of 30 minutes have this format:
config-xxxxxx-2018-06-26_12_06_yy.xml, where y varies between 11 and 59.

It seems that the backup system takes the hour and minutes of the first backup and change only seconds.

The backups were all done using the "Setup/test Nexcloud" button.

Cheers,
Maskim
Pages1