I would like to ask if my thinking is correct:
- rclone, config file is encrypted, gdrive is crypt
on VPS server like scaleway or online.net or vultr in ubunu 16 x64:
rclone --config=encrypted.conf --htpasswd bcrypt_file serve http --addr my.host.com:55643 --cert /etc/letsencrypt/live/my.host.com/cert.pem --key /etc/letsencrypt/live/my.host.com/privkey.pem gdrive:
- entered password.
since rclone does not save encrypted.conf ig password
and is using NaCl - very secure method with one time nonce
and access is protected with htpasswd file with BCRYPT hashes
and gdrive: is crypt share
and transfer to client is over ssl
is it possible that VPS owner will see my files?
Even if he will do memory dump - NaCl is very secure encryption method, and rclone does not save password in memory, it would be not usable since nonce is only one time in this secretbox.
Also Bcrypt with strong password htpsswd is very secure.
What vps owner would have to do to crack into my files?
(lets skip possibility where vps owner recompiles rclone and kills mine replacing with his doctored version)