I use VeraCrypt because I’m lazy and it seems like the perfect solution for usb sticks. I once lost one and it had only a directory with veracrypt.exe and a 2gb file.
Nothing can be read from it (hopefully)
I am thinking about any solution you all said here, but I wonder what could I do with them other than brag (with myself) about the solution itself. I am not creating any automatic spreadsheet with them and I’m not even digging around old data daily. So the backup of a 2gb file seems still OK to me.
On the other hand photos are another issue. If I copy directories, I might copy back photos I decided to delete or worse I might mess a new directory structure etc… so I’m still stuck
The trust that they and US government don’t steal your data is solved by encryption. After that issue is taken care of, you only need to trust they will stay afloat in business and manage not to lose the data. All 3 are excellent choices in this regard. A random other hoster even ISO certified is not. I’ve worked long enough in tech to know how stuff is held together by shit and duct tape in most places.
Little difference as far as I’m concerned. They were forced to take an action by court against a customer of theirs and against their previously stated morals, that’s all that matters. This time they were forced merely to add a bit of ip logging, next time they’ll be forced to add a bit of javascript code into their browser client that’ll send back your encryption key if username == “Patron”. It’s not even theoretical anymore, there was actually a precedent last year in germany for tutanota, a german protonmail-like service (Court orders encrypted email biz Tutanota to build a backdoor in user's mailbox, founder says 'this is absurd' • The Register). If you don’t control the encryption, you may as well assume there’s none…
Uhm, I’m not. It’s more of a love/hate relationship, But they are the cheapest game in town to park a few terabytes around and whom I trust not to lose them. Like I said, i actually have stuff that’d get me in hot waters with them if only they knew what i’m storing with them. I trust AES will protect my data.
Ok, not sure I agree, but anyway why should I be concerned about that? AES is still relatively safe even in light of future quantum attacks.
Indeed. I’m getting 4 figures per year worth of cloud backup storage from them for the low 3!
Why wouldn’t it? Unless computers get faster by at least a dozen orders of magnitude (from what? moore’s law is dead), AES-256 still seems like a pretty good bet for my lifetime, I’m not worried that it’ll get broken. About the only chance for that is if the key gets stolen/leaked from me, so i prefer to focus on security of my endpoints rather than bogeymen in the cloud. And it is completely orthogonal to the choice of cloud storage vendor.
Yes but they are much smaller, there’s a risk they can decide to just give up because it’s not profitable and losing market share to the big 3.
Yes that’s unfortunately true. That’s why I keep my google drive hoarder account completely separate from the rest of accounts I have with google. And generally degoogled most of my life to a reasonable extent for me, don’t use gmail except for throwaway accs.
Vulnerabilities in ciphers that let you crack a piece of ciphertext without having anything else are nearly unheard of. You need a known piece of plaintext, several even, ideally of your choosing, to apply advanced cracking techniques like differential cryptanalysis. Quantum is not such a big concern to AES either, theoretically only halving key size. Even for AES-128, 2^64 keys to brute force is still crazy high number to brute force to check out a random user’s stash. What if he only had some boring family movies in there?
They haven’t been profitable for years in a race to catch up with AWS/Azure but they’re at least trying, revenues is steadily growing and not going disappear into thin air with all your data one day like a small hoster might, have top notch engineering practices. Human error at a small hoster with systems held together by duct tape and bubblegum can toast your data in an instant and cause the company to fold shortly thereafter, you get oops instead of a lifetime storage for your data, at best maybe a refund. Happens even to alleged pros, backup companies losing backups.
Also if google does decide to divest out of cloud, a natural question is what would they with the spared money. And it’s not like that they have a lot more brilliant ideas of what to do with billions $ their ad machine is printing. They’ve been desperate to diversify out of being a little more than just an ad company (as far as wall street is concerned) for over a decade and cloud is a decent bet for that.
It’s actually more complicated, at least the good companies have a lot of safeguards to prevent that. As everything it’s a lot of tradeoff, depending on the data and the threat model, I might trust a world class security team (and all the safeguards against unauthorized accesses) vs. self hosting or a random cloud provider.
Good setup, I have a NAS too and I used to back it up in cloud service (locally encrypted backup of course). I was disappointed after I was forced to quit 3 services because the “unlimited” backup became limited or the service was discontinued. The game to swap HDD between place is really a huge constrain and you can be sure you will loose something if you don’t do it for a week or more during holiday or if you just forget or postpone sometimes.
So I made the next step and bought a second NAS (secondhand) with about twice more HDD space I need for my backups (I don’t backup everything on it, like movies and tv shows are no in the backup). Then I setup the second NAS to be a backup destination with also a little spare space to use that will be backed up in the first NAS. And I put it at the home of a family member. The person can know backup the smartphones and laptop in the local NAS, with a bi-weekly backup in my NAS and I can backup my important data in this second location. So far it worked flowlessly much longer than the longest cloud backup account I had.
I’m revisiting this topic as I now need a stable and long-term backup solution. I currently have a DAS at home (G-Technology with 2x 3 To), but the drives date back to 2018 and the setup is starting to show its age. I’m considering moving to something accessible remotely.
I looked at NAS options (Synology, UGREEN, etc.), but I’d prefer to avoid the ongoing time investment and the relatively high costs of hardware purchase and maintenance.
Does anyone have practical experience with Infomaniak or Proton Drive for personal backup use? I’m aiming for a straightforward setup for both myself and my spouse, ideally around 2–3 TB, with the possibility to expand in the future.
I only recently got around to getting backups sorted out. I decided on restic in the end.
For those wanting cheap, you can look at cloud providers, many offer free tier so for non-media backups, this is enough for you to spread copies across multiple providers for free.
I use Rclone for backups. Rclone can use any s3 backend as destination. In my case, I’s Backblaze b2. I also looked at Restic. It works well, but what I don’t like is that you can’t read the backup without the Restic client. But Restic has also been recommended to me.
Last time I tested it few months back, it didn’t have a gui (or not usable one). But there are some client gui tools around for S3. I tested it with nextcloud as data storage from a hetzner cloud VM.
A friend of mine does something similar. Local backup to a NAS and he set up a NAS at his parents’ house to backup their computers and they sync over the network to provide a mutual remote backup.
I registered a few weeks ago for the free plan at Infomaniak, 15 Gb files and 20 Gb mail. Cloud storage in Switzerland was an important criterion for me. Setup was easy and smooth, no issue so far.
By reading and partipating to this forum, you confirm you have read and agree with the disclaimer presented on http://www.mustachianpost.com/
En lisant et participant à ce forum, tu confirmes avoir lu et être d'accord avec l'avis de dégagement de responsabilité présenté sur http://www.mustachianpost.com/fr/
Durch das Lesen und die Teilnahme an diesem Forum bestätigst du, dass du den auf http://www.mustachianpost.com/de/ dargestellten Haftungsausschluss gelesen hast und damit einverstanden bist.
