Hi there,
happy to have found rclone as it looks really promising to do a sync of my local backup to some cloud storage! Even before starting, I have one question though...
I consider ransomware to be one of the most likely events to "break" my backup strategy. Problem is: as long as I want automated syncs to cloud, I have to store the access token on my machine, and so it can be found and used by some smart ransomware to make my cloud backup unusable.
Now with rclone I can use a password to encrypt the config/token, but the problem stays the same: as long as I want automated syncs, I have to store the password... I would really not be surprised to find current ransomware to search for terms like RCLONE_CONFIG_PASS
or password-command
in cron commands, or in scripts called by cron commands.
The only thing I came up with was to use some obfuscated wrapper script that generates the rclone call so that, at least, it isn't easily "auto-detected".
Is this only paranoia, or a relevant scenario in your opinion? How do you handle this?
Thanks for your thoughts
sben