this post was submitted on 06 Jul 2024
101 points (97.2% liked)

Selfhosted

40219 readers
1253 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Hi everyone,

I've started pushing backups of media important to me (family pictures, video etc) to backblaze with client-side encryption.

However, are they a reliable storage provider? I can't help but compare them to something like Amazon who likely has a better chance of maintaining my files but they are so expensive that I don't even bother.

What do you think? Yes, I've heard of 3-2-1, however for now I only have backblaze and a local backup. I'm trying not to spend too much on this.

Thanks!

you are viewing a single comment's thread
view the rest of the comments
[–] greywolf0x1@lemmy.ml -3 points 4 months ago (5 children)

ignore the cucks downvoting you, what privacy-respecting alternatives do you suggest?

[–] EncryptKeeper@lemmy.world 5 points 4 months ago

Backblaze but you encrypt your data before uploading it?

[–] Findmysec@infosec.pub 2 points 4 months ago

Any storage provider with client-side encryption

[–] smiletolerantly@awful.systems 2 points 4 months ago* (last edited 4 months ago) (1 children)

I've recently switched from Backblaze to a Hetzner Storagebox. 5TB for only slightly more than I was paying for Backblaze.

They support BorgBackup out of the box, so super simple to set up encrypted, differential backups

[–] Findmysec@infosec.pub 1 points 4 months ago

Is there an SLA on the Hetzner storage boxes? What do you think about their reliability (will they recover if their underlying hardware fails?)

[–] TheFrenchGhosty@lemmy.pussthecat.org 1 points 4 months ago (1 children)

Any provider outside of the 5 eyes

[–] greywolf0x1@lemmy.ml 1 points 4 months ago

there's also the 14 eyes, when you consider this, you don't even want to do or put anything online as everyone and everything wants to violate you for some profit

i'm now considering South America and Russian services as alternatives, but of course I'll be encrypting my data before it leaves my device

[–] 03ari@lemmy.world 1 points 4 months ago* (last edited 4 months ago) (1 children)

not the op of this comment. I know there’s Infomaniak that is an independent host based in Switzerland, and they have a service called Infomaniak Swiss Backup. I might use their services in few times, so will come back to this comment to tell what I think of them in a few weeks if you wanna know

You could still encrypt your backups tho to make them private.

[–] philpo@feddit.de 3 points 4 months ago (2 children)

Just saying, but swiss privacy laws are a huge marketing hoax and amongst the worst in Europe.

[–] sunbeam60@lemmy.one 1 points 4 months ago

I know - it’s unreal how much people confuse Swiss banking privacy with Swiss privacy laws in general. FADP is weaker than GDPR IMHO.

[–] qaz@lemmy.world 1 points 4 months ago (1 children)

I didn't know that, could you give an example?

[–] philpo@feddit.de 2 points 4 months ago* (last edited 4 months ago) (1 children)

A few (German language)sources: https://www.tagesanzeiger.ch/der-geheimdienst-will-auch-die-internetkabel-anzapfen-895734682308

https://www.republik.ch/2024/01/09/der-bund-ueberwacht-uns-alle

Basically: The Swiss Intelligence Agency do monitor all traffic going in and out of Switzerland(including incountry routing that uses external routes)and have the right to safe as much traffic as they want for 18 months- and can force swiss companies to give them access to their infrastructure even when they do not provide a service for non-swiss customers. Coming from a Intelligence agency that had the highest amount of files of their citizens of all democratic nations once (see Fichenskandal) it is more than troublesome.

Additionally swiss privacy law itself,while improved in 2023 after years of doing nothing, is still inferior to the GDPR. Unlike the GDPR it is not necessary for a person to explicitly consent to data collection unless the data is deemed especially sensitive. Unlike the GDPR there is no time-limit to notify authorities of data breaches and it is only mandatory for high risk breaches. And the right of data deletion is severely limited as the company can refuse to delete the data if it is still deemed "necessary" for the original purpose.

For me this is also why I can't take Proton and Threema seriously. Whoever uses "swiss privacy law" as a marketing catchphrase without lobbying for improved laws (especially before 2023). And Proton openly lies on their "Why Switzerland" page.

[–] qaz@lemmy.world 1 points 4 months ago

Thank you for the very detailed response