What's Password Criteria For Encryption Password On Backup Feature?
-
Hi, I would like to know about the password criteria for encryption passwords on the Cloudron backup feature.
Is it okay to use complex passwords like a combination of numbers, symbols, and Alphabet? Is it okay to use characters that are more than 30-100?
Thank you
Regards -
Currently the only checked restriction is, that it must be > eight characters https://git.cloudron.io/platform/box/-/blob/master/src/backups.js?ref_type=heads#L352
The password is then used to derive encryptions keys at https://git.cloudron.io/platform/box/-/blob/master/src/backups.js?ref_type=heads#L104
This means the caveats outlined by nodejs docs will apply also to Cloudron https://nodejs.org/api/crypto.html#using-strings-as-inputs-to-cryptographic-apis
-
J joseph marked this topic as a question on
-
J joseph has marked this topic as solved on
-
Thank you for the clarification. So, I can use complex password for the encryption password.
@IniBudi I'm using a * checks password manager * 128 character Passwort. I think yours will work too.
-
@IniBudi I'm using a * checks password manager * 128 character Passwort. I think yours will work too.
-
@andreasdueren don't forget to try restore from the backup. I am really worried if using really complex password but I can't restore the backup files.
@IniBudi did that on various occasions, no problem lol. Did you maybe check the „encrypt file name“ option?
