AWS hacked account

makksi · April 3, 2023, 10:08pm

makksi:

asdffdsa:

makksi:

How can I crypt the rclone.conf?

https://rclone.org/docs/#configuration-encryption

I used the instruction to crypt rclone.conf. Now if I run again "rclone config" it asks me for password. That's ok. But if I look im ny home .config/rclone/rclone.conf it is still plain text. Is that correct?

makksi:

So you are sayint they should have violated my router though?

NO way the keys inside rclone config file can be used to comprise the AWS account.
rclone does not know:
--- your account email address
--- your account password
--- your account two-factor secret

fwiw, hacker got access to your root account,
if you saved that info, uncrypted on your machine, then .....
best not to ever use the root account, never to store that info as plain text.

Sorry,
I enabled the rclone.config encryption, but now, of course when I try to use my original scripts for rclone they fail because rclone.config is encrypted.
I read the wiki https://rclone.org/docs/#configuration-encryption but really it is not very clear to me how I can manage rclone to run with the crypted rclone.config file.
The wiki tals about a paswordstore tools which is not available in my asuswrt system (I have a Asus RTAX88U router) nor in entware distribution.
Can you help me to understand how to run the rclone script with encrypte rclone.config file?

This is my current script:

#!/bin/sh
mv /mnt/NAS/linux/rclone_nas.log  /mnt/NAS/linux/log/rclone_nas_$(date +%F).log
/opt/bin/rclone sync -v /mnt/NAS /mnt/NAS2 \
--backup-dir /mnt/SCRATCH/TEMP_BACKUP/NAS/`date -I` \
--log-file /mnt/NAS/linux/rclone_nas.log \
--delete-excluded \
--size-only \
--min-age 30 \
--max-duration 4h \
--bwlimit 5M \
--filter-from /jffs/myscripts/rclone_nas_filter.txt
wait
/jffs/myscripts/mail_rclone.sh NAS  /mnt/NAS/linux/rclone_nas.log