• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Backup encryption

S

schlimpf

Basic Pleskian
Hi there,

I am currently trying to find out what exactly is encrypted if I choose to encrypt the backups on the server ftp repository.
Just some account passwords? As I found out the hostes files are not being encrypted. Are the database dumps encrypted?

Regards,
schlimpf
 
Last edited:
Thanks for your answer IgorG, but I think you misunderstood me.
I know that the Backup itself is not password protected. My question is which files inside the tar archive are encrypted?
I did not find anything in the documentation about this. As far as I could see only the passwords of the back-upped users are encrypted. Am I right with that?

Edit: If I am right with that, the Note
"In order to improve backup security, we recommend that you protect the backup with a password. This makes impossible for an attacker to obtain sensitive data in case the security of your backup storage is compromised. Note that if you forget your password, it cannot be recovered. Therefore, it is strongly recommended to keep a list of your passwords and corresponding backup file names in a safe place."
Click to expand...
which shows up on the FTP Backup repository settings is a little bit exaggerated because sensitive data can also be files/databases of the vhost
 
Last edited:
Schlimpf, what Igor means is that:
The backup archive it self is crypt-ed and for you decrypt it, you need the password you set earlier.
 
abdi said:
Schlimpf, what Igor means is that:
The backup archive it self is crypt-ed and for you decrypt it, you need the password you set earlier.
Click to expand...
Did you check that? My archive is not crypted.

Still, when I reupload the archive, Plesk tells me that the archive is protected and prompts for a password. So there must be some files inside the archive that are encrypted.
But as far as is know, no vhost files or database dumps are being encrypted. I think only the passwords for webhosting etc. are being encrypted which leads to my previous post that the backup encryption note which shows up on the backup settings is misleading...
 
Last edited:
Alright, i for one I have not tested this much, so I can't say much. However if you have already checked and confirm that website files (vhosts), email content and database dumps are not encrypted then what much value does the encryption offer?
 
You must log in or register to reply here.

Similar threads

S
Question Plesk remote (encrypted) backup option
Replies
2
Views
512
Vladimir C.
V
G J Piper
Resolved SSL It! Let's Encrypt Not Issuing Certificate on MX-only Domain
Replies
8
Views
624
G J Piper
G J Piper
M
Question Simple question about Plesk backups
Replies
2
Views
480
msospc
M
S
Question let's encrypt TXT record and nameserver-problem
Replies
2
Views
599
SiegbertG
S
T
Question Copy S3 Backup configuration
Replies
0
Views
480
Tiria
T
Back
Top