Comments (3)
This method of splitting a file is dependent on everything working (all the cloud providers) to recover the data.
I'd probably recommend something more like this https://github.com/jesseduffield/horcrux where you don't need every copy of the data to reconstruct the original.
You could use that in a simple script - horcrux split
then rclone copy
for each part to the remote backends. The recovery script would do the opposite, rclone copy to retreive the parts and then horcrux bind
to join them back together.
Ideally rclone would have a horcrux backend where you could say, split my data over these N providers in such a way that the data isn't recoverable unless you have M (<=N) parts.
There have been issues about erasure encoded backends which are a similar idea but not encrypted - so more like your current scheme but with redundancy.
PS I sync my keepass file to Google Drive then I can use it with KeepassXC on my computer and Keepasss2Android on my phone. The keepass file is protected with a very strong password, however Keepass2Android can store it in the secure enclave on the phone so you can unlock it with your finger print. All very convenient!
from rclone.
Hi @ncw
This method of splitting a file is dependent on everything working (all the cloud providers) to recover the data.
yes. But that was the goal of my initial algorithm. In theory, if there are no providers or a lack of internet connection, the keepass password bank is useless. This makes sense when you want greater security, privacy and anonymity. In theory, no provider can know which n providers you shared the information with. It's like shamir, but used in reverse.
The bad thing is that even with this supposed security, privacy and certain anonymity... you still depend on suppliers, which is bad. Because without n suppliers you lose the file. It's exactly what you mention here.
I'd probably recommend something more like this https://github.com/jesseduffield/horcrux where you don't need every copy of the data to reconstruct the original.
You could use that in a simple script - horcrux split then rclone copy for each part to the remote backends. The recovery script would do the opposite, rclone copy to retreive the parts and then horcrux bind to join them back together.
yes. Initially I created an issue whether I could complement the horcrux with the idea above or not. In a second use case, horcrux could be useful for those who don't trust certain companies but still need them. In the case of password managers, I could split my data with n password managers: Bitvarden, 1password, Lastpass. That makes sense?
(My initial idea was to do encryption through division without there being a password or anything like that.)
Ideally rclone would have a horcrux backend where you could say, split my data over these N providers in such a way that the data isn't recoverable unless you have M (<=N) parts.
That's what I thought too and what you described perfectly here.
There have been issues about erasure encoded backends which are a similar idea but not encrypted - so more like your current scheme but with redundancy.
yes.
PS I sync my keepass file to Google Drive then I can use it with KeepassXC on my computer and Keepasss2Android on my phone. The keepass file is protected with a very strong password, however Keepass2Android can store it in the secure enclave on the phone so you can unlock it with your finger print. All very convenient!
Thank you for your kind words. 🙂
from rclone.
@ncw I left the my code public, I don't intend to implement it for now for the good reasons you mentioned. But I learned a lot and I'm grateful for the opportunity to improve.
Edit: I had opened two issues to check if my algorithm could be added to the horcrux project as a reference or as part of the core. Look here: horcrux with rclone?, "alternatives"
I closed this issue because it is very similar to what you mentioned here: erasure encoded backend
from rclone.
Related Issues (20)
- VFM (Veno File Manager) backend HOT 4
- Re: Single Sign On Support for Seafile HOT 1
- Single Sign On Support for Seafile HOT 3
- rclone copy creating empty directories it didn't create before HOT 11
- recursive link generation with filtering HOT 4
- Can not add a custom header when uploading a large file to Backblaze HOT 1
- Permissions issue with Yandex Cloud Object Storage (S3) HOT 3
- Docker-volume-plugin with rootless HOT 2
- Add option to delete or move any files or directories that cause errors HOT 3
- rclone check --progress should show hashing and other progress HOT 1
- Add adaptive --checkers=auto and make default
- Wrong Content-Type in HTTP API HOT 5
- New command: rclone verify HOT 3
- WebDAV: Add support for metadata using PROPFIND/PROPPATCH HOT 1
- Chunker: Not storing/preserving system metadata other than ModTime HOT 3
- Change chunker default name_format to *.rc=### HOT 3
- bisync: the tests are too noisy HOT 2
- Add Support For Noysi.com HOT 3
- Different output formatting for lsjson with --stat HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from rclone.