How to hide the name and type when typing rlone config

tilinux0 · December 15, 2021, 8:03pm

IF I DO NOT USE THE TEMPLATE, YOU CAN DELETE MY POST.

What is the problem you are having with rclone?

I need to hide or put a password so no one sees the name and type.
Many people use my computer

What is your rclone version (output from `rclone version`)

rclone v1.55.1

Which cloud storage system are you using? (eg Google Drive)

google

The command you were trying to run (eg `rclone copy /tmp remote:tmp`)

Paste command here
c:\rclone\rclone -vP sync --progress C:\pastabackup MODELO:PASTA\BACKUP\servidor

The rclone config contents with secrets removed.

Paste config here

A log from the command with the `-vv` flag

Paste  log here
you don't need to post the version here

asdffdsa · December 15, 2021, 8:10pm

hi,

to password protect the rclone config file, you can encrypt it
https://rclone.org/docs/#configuration-encryption

tilinux0 · December 15, 2021, 8:12pm

but I will need to enter the password every time I run rclone

asdffdsa · December 15, 2021, 8:13pm

there are diferent way to give the password password
in the end, one way or another, to decrypt the config file, rclone will need that password.

perhaps run rclone from a usb drive.

tilinux0 · December 15, 2021, 8:14pm

can I put the password inside an executable?

asdffdsa · December 15, 2021, 8:24pm

well, i do that, to hide a password inside a .exe but that is not a good solution when a computer is shared with users that you do not trust.

they can find the .exe, and run rclone config show.

Ole · December 15, 2021, 8:52pm

Do you trust the admin of the computer?
Do you have your own account?
Do you use Windows?

If Yes to all three, then there is a safe way to store the password (using Windows encryption based on your account password).

Linux experts may know a safe way if Yes to the first 2.

If No to one or both of the first two, then there really is no safe way to enter or store any information on the computer, an usb stick will also be unsafe. Still configuration password is better than nothing if the other users aren't somewhat determined to get access.

asdffdsa · December 15, 2021, 9:14pm

hmmm, the OP is running on a winbox.
so about 1. any monkey including jojo, and some humans, can convert a standard account into an admin account with a quick reboot.

so 1+2+3 would need the fourth item
0. bitlocker the c: drive.

and then have to work around 4+5+6+7...1000

the easy workaround, given that rclone is a portable app, is to store rclone and config file on a usb key.

better yet, a usb key using bitlocker to go.
plug in the usb key, type in the bitlocker password, and run rclone from that.

Ole · December 15, 2021, 9:23pm

I doubt this on a modern computer (that is ready for Windows 11), please give me a hint

If somebody has access to start programs on the account you are using then they may be listening in the middle...

asdffdsa · December 15, 2021, 10:01pm

well, win11 is at most 10% of the market.

and being ready for win11 really does not mean anything at all as 90% or more of them do not have tpm and not-secureboot enabled.

tilinux0 · December 16, 2021, 6:38pm

The whole question is:
My fear is that someone will edit the backup script and throw other files in the cloud, deleting what is already there and I will lose my backup.

Is there a way for rclone not to erase what's in the cloud?

asdffdsa · December 16, 2021, 6:49pm

your ONLY issue is to prevent others from deleting files in gdrive?
it is ok that other users can read and download the files in gdrive?

tilinux0 · December 16, 2021, 6:52pm

yes, my only problem is erasing.

asdffdsa · December 16, 2021, 6:52pm

well, since you asked and i have been planning to test ways to hack win11, to see if it behaves same as win10; your post gave me an excuse.

did a quick test, seems win11 is the same as win10, using hyper-v vm.

install win11, which requires tpm and not.secureboot to be enabled.
boot into win11, install rclone, create config file, shutdown.
disabled not.secureboot
disabled tpm
boot into gparted, hiren's, winpe, etc...
mount the win11 cdrive partition.
able to read/copy/edit rclone.conf from that partition

asdffdsa · December 16, 2021, 6:54pm

create a gdrive user using IAM, adjust user permissions to disable delete.

tilinux0 · December 16, 2021, 6:56pm

Sorry I don't understand, do I set this when creating the settings in rclone?

asdffdsa · December 16, 2021, 7:06pm

as i do not use gdrive much, cannot advise on the exact correct method to prevent deletion.
i do not think you can do that with rclone alone.
need to adjust permissions at the google developer account.
maybe @Animosity022 would know?

tilinux0 · December 16, 2021, 7:10pm

Alright, do you have any idea how I can fix this?
I need to upload the files and prevent anyone from altering the file to delete what's in the cloud.

Animosity022 · December 16, 2021, 7:22pm

Nope as I don't have access to Google anymore as all my accounts are closed. I'd assume it's possible but not sure offhand.

If you aren't sure how to do it the IAM Google Cloud Suite Admin, you can also select read-only for the rclone.conf, but that's really just for show.

I'd say you are starting with a flawed premise as if it's a shared computer that you can't control, the data on it would be considered comprised already so we call that putting lipstick on a pig as you can't even be sure your data is in good shape.

asdffdsa · December 16, 2021, 7:26pm

please ignore that glass shattering sound, as i dropped my mug of Guinness Extra Stout!