py2gb

joined 1 year ago
[–] [email protected] 1 points 1 year ago

In case anyone was wondering. I implemented a small php function. It uses aes 256 with a sha256 key “derivation” to encrypt things.

I choose the key when encrypting, and force encryption upon logout.

Cheers!

[–] [email protected] 1 points 1 year ago (1 children)

I have resisted nextcloud. It was always slow, and cumbersome for me. I’ll have to check it out again.

[–] [email protected] 1 points 1 year ago (1 children)

Not sure I follow. What I am proposing is a way of encrypting the content of the website. Decrypted only while in use, this way, if someone gets access to the server (bug, leaked password, etc) the content is still encrypted.

[–] [email protected] 1 points 1 year ago (3 children)

Cheers! I actually use this for some encryption here and there. My thought was more along the lines of the entire content. Server side.

 

Hiya People!

I have, for some time, had a specific problem in mind. I cannot, for the life of me, think of a better group to tell me my idea is crap.

In any case, I have a personal knowledge base I host facing the internet on a VPS. It is perfect for me, accessible, based on dokuwiki so its really easy to backup entire installation, the works. It is setup as a private wiki, so login is mandatory for viewing, editing, etc.

What I am looking for is mechanism for encrypting the data on the webserver when the user is not logged in. Under this scheme, the content of the server would be encrypted, only to be decrypted by the authorised password and encrypted again upon logout (or timeout).

Does this make sense? are there solutions like this out there?

I will attempt writing a plugin for dokuwiki, just wanted to make sure there is something out there that solves this problem in general.

Thank you!