-
Notifications
You must be signed in to change notification settings - Fork 1
Security
Redundancy is a cloud for @home. If your want to use it in another situation with more users and bigger space, you should choose wisely how you configure it. Also your webserver's configuration is very important. Also, the filesystem of Redundancy is not crypted. Maybe, a sub-filesystem-layer, like encFS would be an idea. Also Redundancy will get _maybe_ an cryption mode to crypt anybody's data so that nobody other can access it. But thats an idea for the future.
HTTPS provides a cryption of your data while being submitted. It is recommended to install an HTTPS module to your webserver and enable it. To enable force https on Redundancy, set the configuration value _Program_HTTPS_Redirect_ to 1. Redundancy will redirect automatically to https.
Only enable Plugins when necessary.
- Secure your data directory (/Storage/), /Snapshots/ and /Temp/ with .htaccess (or equal) to forbid unauthorized access to it.
- You can rename /Storage/ /Snapshots/ and /Temp/ as you like it. For example you can name them "cheeseburger", "potatoe" and "sausage". The only requirement is that you are using Redundancy 1.9.8 or newer