I’m looking into getting an extra backup solution for my laptop, and a backup solution for my NAS/media server. Currently, my laptop backs up to my local NAS, and Proton Drive, while my server has no additional backup.
Is using something like Backblaze B2 actually private and secure, especially if I use the personal encryption key I can set? Or is there another online service that may be better and more private?
I asked a very similar question earlier and the consensus is to encrypt before you upload. That way you care more about reliability than privacy
Make sure you test an actual restore. A backup that cannot be restored is useless.
Absolutely. But this will likely just be media
And make sure your encryption keys are stored securely. You don’t want a house fire or something to destroy your keys and your data.
Multiple pen-drives with encrypted storage holding keys; how does that sound? Good idea?
As long as they’re physically separated so you don’t get screwed if there’s a fire or something. And if you’re DIY-ing, use multiple separate places (friends houses, work, etc).
Flash loses memory over many years. I’d use like 3 different mediums and always keep a hash of the key with the key.
What are good places to store your encryption keys? I am trying to find solutions that aren’t just store a piece of paper in some security deposit box.
Some options:
I am confused, aren’t you just pushing the problem further up the chain? Now you need to worry about storing the key that decrypts the file storing the key you wanted to protect in the first place.
Same goes with tarsnap, now you need to worry about where to store the tarsnap keys.
You’d use a password to encrypt the keys and/or store that key in your password manager.