Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Secure Backup with a password #60

Open
hoomb opened this issue Sep 12, 2021 · 6 comments
Open

Secure Backup with a password #60

hoomb opened this issue Sep 12, 2021 · 6 comments
Labels
enhancement

Comments

@hoomb
Copy link

hoomb commented Sep 12, 2021

It is possible to secure the created "gz" file with a password, so it can be transferred to a cloud backup server or kept in another place?
@prodrigestivill
Copy link
Owner

You can use schickling/postgres-backup-s3 and upload to a S3 bucket protected using SSE (server-side-encryption) with AWS KMS.

@hoomb
Copy link
Author

hoomb commented Oct 29, 2021

This is an option but not what I really need. I want to just have a password protected "gzip" file

@fredericoschardong
Copy link

Here is an example of that. It would be great to have this feature in this image.

@slhck
Copy link
Contributor

slhck commented Jun 30, 2022
edited
Loading

I'm not sure if it makes sense to add it to this image itself. Since this image does not actually transfer the files and stores only them locally, there is little benefit from encrypting the files — any adversary with access to run the image could also decrypt the files directly.

You can encrypt the files before transferring them to S3 or Google Cloud with a simple script.

GOOGLE_CLOUD_STORAGE_BUCKET="my-bucket-name"

lastDailyBackup="$($find "backups/daily" -type f -printf '%T+ %p\n' | sort -r | head -n 1 | cut -d' ' -f2)"

if [[ ! -f "$lastDailyBackup" ]]; then
    echo "No latest daily backup file found!"
    exit 1
fi

if [[ -n "$BACKUP_ENCRYPTION_KEY" ]]; then
    gpg --batch --yes --passphrase "$BACKUP_ENCRYPTION_KEY" --symmetric "$lastDailyBackup"
    lastDailyBackup="$lastDailyBackup.gpg"
fi

gsutil cp -n "$lastDailyBackup" "gs://$GOOGLE_CLOUD_STORAGE_BUCKET/$dailyFileName"

@switz
Copy link

switz commented Jan 12, 2023

I'm not sure if it makes sense to add it to this image itself. Since this image does not actually transfer the files and stores only them locally, there is little benefit from encrypting the files — any adversary with access to run the image could also decrypt the files directly.

does the decryption/private key have to live on the server? could one not encrypt it using a public key?

this would be a really nice feature (preferably a hardened encryption over simple password protection), there's no reason to have my backups sitting on a server in plain text.

@benzht
Copy link

benzht commented Oct 24, 2024

Pretty late to the party, but I've been playing with this a while back with a small extension (added a POST_DUMP_HOOK) so that I can call a script to do the encryption with a public key. Needs some care and attention, still, and I cannot publish the encryption scripts. Basically: use openssl to generate a symmetric key, encrypt the dump with that key, encrypt the key with the public key from an X.509 cert, tar the lot with some info of how to unpack, and finally remove all temp-files
Check out my fork for the POST_DUMP_HOOK code.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@slhck @switz @benzht @prodrigestivill @hoomb @fredericoschardong