Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Backup encryption using a public key

    Scheduled Pinned Locked Moved
    General pfSense Questions
    2
    3
    198
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • W
      Wolfgangthegreat
      last edited by Wolfgangthegreat

      Hello,

      Currently the manual backup encryption is using a password the user needs to submit to the device, which is not so friendly and somewhat less secure, since browsers are multi-purpose and has plugins/addons that at times discovered as malicious.

      So, I thought - why not do this encryption using a public key?
      It can use the current users mechanism, as a user object can store a public key value, currently for SSH access authentication, but it can also be used to encrypt and sign the backup. One can even create a special user just for the goal of backup.

      I guess this method can also be applied to the scheduled backup to the pfSense cloud, the "Auto Config Backup" feature.

      Is there a plan for such a feature?

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Nothing I'm aware of. I quite like the idea though. Open a feature request.

        Steve

        W 1 Reply Last reply Reply Quote 0
        • W
          Wolfgangthegreat @stephenw10
          last edited by Wolfgangthegreat

          Hi @stephenw10 , glad you liked it!
          I Opened a feature request at https://redmine.pfsense.org/issues/14923

          1 Reply Last reply Reply Quote 1
          • First post
            Last post