Support

Akeeba Backup for Joomla!

#32069 Encryption option or encrypted JPS archive?

Posted in ‘Akeeba Backup for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Akeeba Backup version
n/a

Latest post by on Wednesday, 01 January 2020 17:17 CST

adoucette
Hi,
I've just upgraded from Akeeba backup core to Professional 6.6.1. There are two encryption options that I see: 1) in the global options there is an encryption yes/no option or 2) JPS archive with encryption.
Which is the better choice here?
As I understand 1), it puts a key in the database and in a file on the server, and may not work if transferring to a new server. 2) appears to just be an encryption of the archive file, stored in the file header, like an encrypted zip file.
I may be wrong about this, so please correct/ clarify if needed!
Would #2 be the safer and more compatible option in that it a) may transfer between servers better and b) may not be compromised if an attacker has access to the server's files (in which case one would be hosed anyway, of course).

Thank you for any clarification / suggestions --- and thank you for a great product!

Ari

dlb
Ari,

You probably want both, they do two completely different things. The encryption option in Options encrypts your Akeeba Backup settings. Keep in mind that if you're using post processing to cloud storage (or even encrypted archives) then you have passwords in this data. This option makes sure those passwords are not accessible directly from the database.

Your backup archive itself is a security risk under some circumstances. The configuration.php file has your database access details, in some setups it also has FTP access details. There's lots of sensitive data in there. The JPS file format is very much like an encrypted zip file, the contents can't be extracted without the proper password.


Dale L. Brackin
Support Specialist


us.gifEnglish: native


Please keep in mind my timezone and cultural differences when reading my replies. Thank you!


????
My time zone is EST (UTC -5) (click here to see my current time in Philadelphia, PA)

adoucette
Am I to understand then that the encryption option above (#1) encrypts only the settings from akeeba backup, and does not encrypt the backup archives?
Is there a potential that enabling #1 may cause difficulty moving to a new server if that is ever necessary? (What extra steps, if any, would be required to move to a new server due to this encryption being enabled?)

Thanks again,
Ari

dlb
Ari,

#1 only encrypts the Akeeba Backup settings. That option will travel well to a new site, you won't need to do anything special on the new host. or server.

#2 encrypts the backup archive itself.


Dale L. Brackin
Support Specialist


us.gifEnglish: native


Please keep in mind my timezone and cultural differences when reading my replies. Thank you!


????
My time zone is EST (UTC -5) (click here to see my current time in Philadelphia, PA)

adoucette
Nice, thanks. Will start using both then.

dlb
You're welcome!


Dale L. Brackin
Support Specialist


us.gifEnglish: native


Please keep in mind my timezone and cultural differences when reading my replies. Thank you!


????
My time zone is EST (UTC -5) (click here to see my current time in Philadelphia, PA)

System Task
system
This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!