Koofr vault encryption with rclone

Help and Support
1

Hi there,

I'm wondering about koofr.net and it's vault zero knoledge encryption with rclone as they are claiming.

How it could be achieved if actually I must put rclone config on their service in form:

[koofrcrypto]
type = crypt
remote = koofr:/Vault/
password = secret obfuscated pass
password2 = secret obfuscated salt

And actually their system when pressing fill button immediatelly reveal the original password and original password2 from this config and storing it in their system.

Correct me if I am wrong, but in this case they have everything to decrypt the data. Am I right?

2

I think you are 100% right. All cryptographic operations should be performed client side. It is also where all sensitive data like passwords should reside.

If things work like you described and you have to hand over all secrets to this service then it means that they have full access to your unencrypted data.

1 Like
3

let me show the screen from their control panel.
If I want to create encrypted vault and access it with rclone here is the form I should to fill (I just press new button)

Screenshot_20250127_174949
Screenshot_20250127_1749491491×1243 144 KB

4

It is actually so ridiculous given "zero knowledge" claim that I have doubt it really works like that:) Are you sure?

Do you have a link to this setup description?

5

yes I posted a few seconds before you :wink: above your message

Until I fill up the rclone config section and press that green Fill button I'm not able to press Create button

1 Like
6

But... I have had a look online.

Are you sure it is not the client side? It might be their local client configuration only.

7

May you elaborate?

My steps are:

  1. Create rclone crypt using Crypt
  2. Then I want to upload data to koofr
  3. I must to share my rclone config with their service

I'm not an expert in an encryption field that's why I ask here to clarify my ambiguities

8

I am not Koofr user and not planning to use it:) I suggest you ask question on their forum.

It looks like serious service and I doubt they require your crypt config to upload data. It is maybe some optional feature (which I would not use) to allow web based access to data etc.

9

Your files are encrypted, file names and all content included, locally on your device with your Safe Key and some magic salt before they are sent to your Vault.

10

It's a nice statement, but I don't understand how it's working.

As I said I must to upload my rclone config to use the koofr vault, where am I wrong?

11

Koofr Vault is an open-source, client-side encrypted folder

koofr valult is local application. what makes you think there is an upload of the config file?
everything i have read, it is clear, no upload of config file to koofr cloud.

it is the same as rclone

  1. the config file is local
  2. the encryption is local
  3. encrypted files are uploaded to koofr cloud
12

Did you see my screenshot in the third message here? I'm not able to create koofr vault until I do upload rclone config.

I can film a video.

13
14

this is a forum about rclone, not koofr vault

koofr vault does not use rclone, does not use rclone source code.

15

And what is that? It is in web browser? what is URL?

As I said it might be local app.

You have to ask on koofr forum.

I do think that you do not have to use it at all.

What you need to upload data are your koofr credentials.

16

I know, just want to be sure that I understand correctly that rclone config is enough to decrypt data.

17

not sure should I answer or not :wink:

yes browser, URL is Koofr Vault

18

they've deleted 2 posts on reddit already :wink: that's why I'm here. But I agree it's not rclone issue :wink:

19

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.