The Best Private & Secure Cloud Storage in 2024 (blog.thenewoil.org)

submitted 4 months ago by BrikoX@lemmy.zip to c/privacy@lemmy.ml

22 comments fedilink hide all child comments

Cloud storage has become ubiquitous in modern society. The most widely-used example, I think, is the one that comes prebundled with our p...

top 22 comments

sorted by: hot top controversial new old

[-] FutileRecipe@lemmy.world 34 points 4 months ago

Mainstream cloud storage providers like Google Drive and iCloud have access to users' files, posing privacy and security risks.

Nextcloud is the preferred secure cloud storage option, but has drawbacks like the need for technical expertise to self-host and issues with end-to-end encryption.

Filen is a user-friendly secure cloud storage option, but has some concerns around encryption implementation.

Mega offers a large free storage plan, but has had past security issues and controversies.

Proton's secure cloud storage is part of their broader privacy-focused ecosystem, but has some app and feature inconsistencies.

Cryptomator is a useful tool to add an extra layer of encryption to any cloud storage service.

Apple's Advanced Data Protection is a proprietary solution that lacks transparency compared to open-source alternatives.

It's important to weigh the risks versus benefits when choosing a cloud storage provider based on the sensitivity of the data.

Switching to a more secure and privacy-focused cloud storage option is worthwhile, even for non-sensitive data.

The article encourages users to take steps to improve their cloud storage privacy and security, rather than relying on mainstream providers by default.

Courtesy of Kagi's Universal Summarizer's Key Moments.

[-] MonkderDritte@feddit.de 4 points 4 months ago

Back to the roots: is there a modern remote filesystem &| protocol with support for encryption?

[-] Pistcow@lemm.ee 10 points 4 months ago

private-ish

[-] MalReynolds@slrpnk.net 9 points 4 months ago

All storage is secure if you encrypt locally first (metadata notwithstanding). Of questionable utility for phone apps (happy to be corrected, some sort of FUSE type filesystem with cached filenames etc. could probably work), but great for offsite backups (preferably using multiple services) of critical data.

[-] possiblylinux127@lemmy.zip 2 points 4 months ago

Just don't lose the keys

[-] MonkderDritte@feddit.de 1 points 4 months ago

All storage is secure if you encrypt locally first

Except if they lose your data.

[-] Railcar8095@lemm.ee 3 points 4 months ago

3,2,1

[-] possiblylinux127@lemmy.zip 2 points 4 months ago

More likely they will restrict access to your data

[-] MalReynolds@slrpnk.net 2 points 4 months ago

Hence multiple services...

[-] Gargari@lemmy.ml 5 points 4 months ago

Trust no one! Any cloud + rclone crypt. Solved.

[-] Ohh@lemmy.ml 1 points 4 months ago

How does this compare to borg ?

[-] delirious_owl@discuss.online 4 points 4 months ago

Wow, they recommend nextcloud which doesn't even support client- side encryption .

My recommendations are usually Tresorit, Mega, and Proton Drive. I dont know of any others that support sharing files with third parties that enforces client- side encryption on everything.

[-] frogmint@beehaw.org 2 points 4 months ago

https://nextcloud.com/encryption/

End-to-end Encryption client-side is available from Nextcloud desktop client 3.0 and newer as a folder-level option to keep extremely sensitive data fully secure even in case of a full server breach. The server facilitates key exchange for syncing between devices and sharing but has Zero Knowledge, that is, never has access to any of the data or keys in unencrypted form.

It's not a big deal if you self-host at home either. You can use SSL for the traffic and LUKS for the storage.

[-] delirious_owl@discuss.online 1 points 4 months ago

Again, i dont recommend nextcloud because it doesn't encrypt everything. Same for other cloud providers. I wouldn't use it unless everything is encrypted client-side and it cannot be turned off.

It is a big deal if you self host. If you server is owned, your data is compromised, because the server can read your data.

[-] Dark_Arc@social.packetloss.gg 1 points 4 months ago

To be fair, if your server is taken over, there's a good chance your other devices have been compromised first/as well, in which case you're already in trouble.

[-] delirious_owl@discuss.online 0 points 4 months ago

No way. Servers are easier to compromise because they're online all the time and by definition exposed to requests from the public internet

[-] Dark_Arc@social.packetloss.gg 2 points 4 months ago

You can have a server without a public IP; that's totally doable. An internal server that's only accessible from LAN or a VPN is still a server.

Also, the majority of compromises happen because of user error (e.g., someone opens/runs the wrong thing) or an unpatched machine, not because of an exploit in server software/because the machine is always on. This is especially true in the business world where it's often a combination of human error and the network not being segmented/ACLs not being set properly/etc (lots of cases of human error).

It's also not that unusual for someone to keep their e.g., desktop always on or their laptop/mobile device in a low power state where it still has network activity despite being "off."

[-] delirious_owl@discuss.online 0 points 4 months ago* (last edited 4 months ago)

Yes. In practice, servers are easier to own than computers

[-] akrz@programming.dev 3 points 4 months ago

Ente is really nice for photo storage!

[-] knobbysideup@sh.itjust.works 2 points 4 months ago

ssh to my bastion.

[-] LemmyHead@lemmy.ml 2 points 4 months ago

Ssh over wireguard to a container in my bastion

[-] Scolding0513@sh.itjust.works 1 points 4 months ago

im gonna use my sshdick to stream some of my creamy data into your bastion

this post was submitted on 31 Mar 2024

78 points (93.3% liked)

Privacy

30644 readers

1751 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS