From b3dda2d98ae9f59559514447e82e61dc10edf476 Mon Sep 17 00:00:00 2001
From: DjP-iX <133042991+DjP-iX@users.noreply.github.com>
Date: Fri, 6 Dec 2024 15:57:26 -0500
Subject: [PATCH 1/6] Create FilenameEncryption.md

---
 static/includes/FilenameEncryption.md | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 static/includes/FilenameEncryption.md

diff --git a/static/includes/FilenameEncryption.md b/static/includes/FilenameEncryption.md
new file mode 100644
index 0000000000..52fa1ec592
--- /dev/null
+++ b/static/includes/FilenameEncryption.md
@@ -0,0 +1,10 @@
+&NewLine;
+
+{{< hint type=warning title="Filename Encryption"  >}}
+The rclone project has identified known issues with **Filename Encryption** in certain configurations, such as when long file names are used. See [SSH_FX_BAD_MESSAGE when syncing files with long filename to encrypted sftp storage](https://forum.rclone.org/t/ssh-fx-bad-message-when-syncing-files-with-long-filename-to-encrypted-sftp-storage/46228).
+In some cases, this can prevent backup jobs from completing or being restored.
+
+We do not recommend enabling **Filename Encryption** for any cloud sync tasks that did not previously have it enabled.
+Users with existing cloud sync tasks that have this setting enabled must leave it enabled on those tasks to be able to restore those existing backups.
+Do not enable file name encryption on new cloud sync tasks
+{{< /hint >}}

From f0b46421134564217f41f5bdaa53484817d132d3 Mon Sep 17 00:00:00 2001
From: DjP-iX <133042991+DjP-iX@users.noreply.github.com>
Date: Fri, 6 Dec 2024 15:57:30 -0500
Subject: [PATCH 2/6] Update CloudSyncTasksScreensSCALE.md

---
 .github/CODEOWNERS                                            | 2 +-
 .../DataProtection/CloudSyncTasksScreensSCALE.md              | 4 +++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 0590141462..bf6670ca3e 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -26,4 +26,4 @@
 #apps/ #octocat
 # In this example, #doctocat owns any file in the `/docs`
 # directory in the root of your repository.
-#/docs/ #doctocat
\ No newline at end of file
+#/docs/ #doctocat
diff --git a/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md b/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md
index 77996335a1..f081631ade 100644
--- a/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md
+++ b/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md
@@ -170,9 +170,11 @@ The **Advanced Remote Options** settings are for advanced users to configure rem
 | Settings | Description |
 |----------|-------------|
 | **Remote Encryption** | Select to use [rclone crypt](https://rclone.org/crypt/) encryption during pull and push transfers. Selecting **PUSH** in **Direction** encrypts files before transfer and stores the encrypted files on the remote system. Files are encrypted using the encryption password and encryption salt values. Selecting **PULL** decrypts files stored on the remote system before the transfer. Transferring the encrypted files requires entering the same encryption password and encryption salt used to encrypt the files. Additional details about the encryption algorithm and key derivation are available in the [rclone crypt File formats documentation](https://rclone.org/crypt/#file-formats). |
-| **Filename Encryption** | Selected by default. When selected, the pull and push tranfers encrypt or decrypt file names with the rclone [Standard file name encryption mode](https://rclone.org/crypt//#file-name-encryption-modes). The original directory structure of the files is preserved. <br>When enabled, file names are encrypted, file names are limited to 143 characters, directory structure is visible, and files with identical names have identical uploaded names. File names can use sub-paths, single copy files, and shortcuts to shorten the directory recursion. <br>When disabled, encryption does not hide file names or directory structure, file names can be 246 characters long, use sub-paths, and copy single files. |
+| **Filename Encryption** | **Not recommended** (see below). When selected, transfers encrypt and decrypt file names with the rclone [Standard file name encryption mode](https://rclone.org/crypt//#file-name-encryption-modes). The original directory structure of the files is preserved. <br>When enabled, file names are encrypted, file names are limited to 143 characters, directory structure is visible, and files with identical names have identical uploaded names. File names can use sub-paths, single copy files, and shortcuts to shorten the directory recursion. <br>When disabled, encryption does not hide file names or directory structure, file names can be 246 characters long, use sub-paths, and copy single files. |
 | **Encryption Password** | Enter the password to encrypt and decrypt remote data.<br>Warning: Always securely back up this password! Losing the encryption password results in data loss. |
 | **Encryption Salt** | Enter a long string of random characters for use as salt for the encryption password.<br>Warning: Always securely back up the encryption salt value! Losing the salt value results in data loss. |
 | **Transfers** | Enter the number of simultaneous file transfers. Enter a number based on the available bandwidth and destination system performance. See [rclone --transfers](https://rclone.org/docs/#transfers-n). |
 | **Bandwidth limit** | Enter a single bandwidth limit or bandwidth limit schedule in rclone format. Separate entries by pressing <kbdEnter</kbd>. Example: *08:00,512 12:00,10MB 13:00,512 18:00,30MB 23:00,off*. You can specify units with the beginning letter **b**, **k** (default), **M**, or **G**. See [rclone --bwlimit](https://rclone.org/docs/#bwlimit-bandwidth-spec). |
 {{< /truetable >}}
+
+{{< include file="/static/includes/FilenameEncryption.md" >}}
\ No newline at end of file

From 1981032836a82f946ef8c331a2df4fe8d5b50339 Mon Sep 17 00:00:00 2001
From: DjP-iX <133042991+DjP-iX@users.noreply.github.com>
Date: Fri, 6 Dec 2024 15:57:32 -0500
Subject: [PATCH 3/6] Update _index.md

---
 .../SCALETutorials/DataProtection/CloudSyncTasks/_index.md   | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/content/SCALETutorials/DataProtection/CloudSyncTasks/_index.md b/content/SCALETutorials/DataProtection/CloudSyncTasks/_index.md
index c5b5d37419..1f827840c3 100644
--- a/content/SCALETutorials/DataProtection/CloudSyncTasks/_index.md
+++ b/content/SCALETutorials/DataProtection/CloudSyncTasks/_index.md
@@ -46,8 +46,9 @@ This requires entering the same password used to encrypt data in both **Encrypti
 With **Push** selected as the **Transfer Direction**, data is encrypted before it is transferred and stored on the remote system.
 This also requires entering the same password used to encrypt data in both **Encryption Password** and **Encryption Salt**.
 
-**Filename Encryption** is selected by default.
-When selected, the pull and push transfers encrypt or decrypt file names with the rclone [Standard file name encryption mode](https://rclone.org/crypt//#file-name-encryption-modes).
+{{< include file="/static/includes/FilenameEncryption.md" >}}
+
+When **Filename Encryption** is selected, transfers encrypt and decrypt file names with the rclone [Standard file name encryption mode](https://rclone.org/crypt//#file-name-encryption-modes).
 The original directory structure of the files is preserved.
 When disabled, encryption does not hide file names or directory structure, file names can be 246 characters long, use sub-paths, and copy single files.
 When enabled, file names are encrypted, file names are limited to 143 characters, directory structure is visible, and files with identical names have identical uploaded names.

From b19948868861ef4cee18565131a6d65abc6b2e8b Mon Sep 17 00:00:00 2001
From: DjP-iX <133042991+DjP-iX@users.noreply.github.com>
Date: Fri, 6 Dec 2024 16:06:59 -0500
Subject: [PATCH 4/6] Update CloudSyncTasksScreensSCALE.md

---
 .../DataProtection/CloudSyncTasksScreensSCALE.md                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md b/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md
index f081631ade..2a0557bb82 100644
--- a/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md
+++ b/content/SCALEUIReference/DataProtection/CloudSyncTasksScreensSCALE.md
@@ -174,7 +174,7 @@ The **Advanced Remote Options** settings are for advanced users to configure rem
 | **Encryption Password** | Enter the password to encrypt and decrypt remote data.<br>Warning: Always securely back up this password! Losing the encryption password results in data loss. |
 | **Encryption Salt** | Enter a long string of random characters for use as salt for the encryption password.<br>Warning: Always securely back up the encryption salt value! Losing the salt value results in data loss. |
 | **Transfers** | Enter the number of simultaneous file transfers. Enter a number based on the available bandwidth and destination system performance. See [rclone --transfers](https://rclone.org/docs/#transfers-n). |
-| **Bandwidth limit** | Enter a single bandwidth limit or bandwidth limit schedule in rclone format. Separate entries by pressing <kbdEnter</kbd>. Example: *08:00,512 12:00,10MB 13:00,512 18:00,30MB 23:00,off*. You can specify units with the beginning letter **b**, **k** (default), **M**, or **G**. See [rclone --bwlimit](https://rclone.org/docs/#bwlimit-bandwidth-spec). |
+| **Bandwidth limit** | Enter a single bandwidth limit or bandwidth limit schedule in rclone format. For example: *08:00,512 12:00,10MB 13:00,512 18:00,30MB 23:00,off*. Separate entries by pressing <kbd>Enter</kbd>. You can specify units with the beginning letter **b**, **k** (default), **M**, or **G**. See [rclone --bwlimit](https://rclone.org/docs/#bwlimit-bandwidth-spec). |
 {{< /truetable >}}
 
 {{< include file="/static/includes/FilenameEncryption.md" >}}
\ No newline at end of file

From 76efa501dea114c91e71c6df9c5acbd31cdc61f3 Mon Sep 17 00:00:00 2001
From: DjP-iX <133042991+DjP-iX@users.noreply.github.com>
Date: Fri, 6 Dec 2024 16:21:47 -0500
Subject: [PATCH 5/6] Update SCALEReleaseNotes.md

---
 content/GettingStarted/SCALEReleaseNotes.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/content/GettingStarted/SCALEReleaseNotes.md b/content/GettingStarted/SCALEReleaseNotes.md
index 6df6ac92be..f0d5ad0485 100644
--- a/content/GettingStarted/SCALEReleaseNotes.md
+++ b/content/GettingStarted/SCALEReleaseNotes.md
@@ -134,6 +134,8 @@ Users with 24.04.2.4 installed and SMB shares in use are encouraged to upgrade t
 
 ### 24.04.2.5 Known Issues
 
+* An issue has been discovered for cloud sync tasks configured with **Filename Encryption**, which is available in **Advanced Remote Options** ([NAS-132472](https://ixsystems.atlassian.net/browse/NAS-132472)). As this is an upstream issue in rclone, we recommend that users should not create new cloud sync tasks with **Filename Encryption** enabled. Existing users of this feature must leave it enabled for existing cloud sync tasks to be able to recover backups.
+
 Please see the 24.04.2 changelog below and use the Jira filter links to see the full changelog and known issues related to the 24.04.2 > 24.04.2.5 releases.
 
 ## 24.04.2.4 Changelog

From d95b13304077f6598a82c12c7040d4c23818dfec Mon Sep 17 00:00:00 2001
From: DjP-iX <133042991+DjP-iX@users.noreply.github.com>
Date: Tue, 10 Dec 2024 13:28:33 -0500
Subject: [PATCH 6/6] Update static/includes/FilenameEncryption.md

Co-authored-by: MicJ <92740932+micjohnson777@users.noreply.github.com>
---
 static/includes/FilenameEncryption.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/static/includes/FilenameEncryption.md b/static/includes/FilenameEncryption.md
index 52fa1ec592..3aad0a5b25 100644
--- a/static/includes/FilenameEncryption.md
+++ b/static/includes/FilenameEncryption.md
@@ -6,5 +6,5 @@ In some cases, this can prevent backup jobs from completing or being restored.
 
 We do not recommend enabling **Filename Encryption** for any cloud sync tasks that did not previously have it enabled.
 Users with existing cloud sync tasks that have this setting enabled must leave it enabled on those tasks to be able to restore those existing backups.
-Do not enable file name encryption on new cloud sync tasks
+Do not enable file name encryption on new cloud sync tasks!
 {{< /hint >}}