Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • 1 Votes
    6 Posts
    488 Views
    murgeroM

    @3246 They should add a way to add 2 backup jobs setup however you like:

    For Me:

    Job 1 - Backup to Local external disk for fast access in case of emergency

    Job 2 - Offsite backup for long-storage.

    Both encrypted, and this offers a quick restore (in the event of just needing a quick restore) and one for proper emergencies

    Not that you even need to set it up like this, but more backups == better backups even if one is local for emergency "non-natural-disaster" restore.

  • 9 Votes
    18 Posts
    1k Views
    StardenverS

    @3246 said in [💡 Guide] How to install Cloudron/Nextcloud with LUKS full disk encryption on Hetzner cloud server:

    @Stardenver yes it is. I also have it running on baremetal at home/office.

    My new set up has a main drive that's encrypted and another for local backups, which is also encrypted but unlocks after decrypting the main boot/data drive.

    Happy to expand on this if folks find it useful 🙂

    Thanks again for your setup guide. Just got a new server and its up and running. May I ask how you'd setup your system, so that additional drives are also encrypted and unlock after decrypting the main drive?

  • 0 Votes
    5 Posts
    147 Views
    S

    @girish to be honest RC4 is horrible but yeah... thanks 🙂

  • 0 Votes
    7 Posts
    296 Views
    32463

    @girish it does, yes. They also have a KVM style one for their "elastic metal" service. I'll give this a try and report back. My main question is whether I can install the OS from an image or if I have to use one of theirs. Otherwise, I may have to find another host 🙂

  • 0 Votes
    8 Posts
    403 Views
    E

    For future reference i managed to clear it up by using a slightly modified version of Girish's search command. It seems like the length limit applies to path length not just the filename length

    find . -type f -print|awk '{print length($0), $0}' | sort -n

    Went into the web interface and deleted / renamed files longer than 156 bytes and finally cleared trashbin/versioned files

    (wipes all deleted / old versions of files - careful):

    sudo -u www-data php -f /app/code/occ versions:cleanup sudo -u www-data php -f /app/code/occ trashbin:cleanup

    @robi @girish agreed it would be awesome if there was an automated way to handle this in the future

  • 0 Votes
    11 Posts
    542 Views
    J

    @girish Thanks! This ended up being a combination of issues I believe. So throttling on the backups due to using rsync, encryption, and file names ended up being too long (only a few) So I've changed some settings around and it seems to have been resolved. I appreciate the help from both @robi and yourself.

  • 0 Votes
    4 Posts
    370 Views
    ShaiS

    @robi @nebulon Thank you. I will try the recipe I found at Stack Exchange and then report back. In my situation it is for a home server. So I can easily connect a keyboard and monitor to enter the encryption password on the drive in the wake of a server reboot.

    I do want to be able to do it remotely though if I'm not home. But the situation is not urgent for me. That explains my delay in following through. But I will.

  • 0 Votes
    2 Posts
    2k Views
    luckowL

    Instead of spending more time to find a solution for my non responsive nc-instance, I did a restore of my last backup. To add my findings from the last hours, I cloned the backup first. Then I deactivated the encryption app within nc.
    The stupid user feedback no longer appears.

    For the record. My setting in nc19 was:

    Default encryption module enabled Server-side encryption disabled
  • 0 Votes
    5 Posts
    362 Views
    yusfY

    @girish In my case I was trying to mirror the content of a remote DO object storage to a local Minio instance. I can't recall the exact error but I remember it had to do with the handling of filenames.

  • Wasabi Backup Error - KeyTooLong

    Solved Support
    7
    0 Votes
    7 Posts
    451 Views
    girishG

    @lucidfox rsync + encryption has file path length limitations i.e if your app has a file which has long path (not just the file name, maybe it is some 10 folders deep) the backup will error. The limitations are documented here https://docs.cloudron.io/backups/#encryption .

    @Robin opened a feature request here to improve this - https://forum.cloudron.io/topic/3057/consider-improvements-to-the-backup-experience-to-support-long-filenames-directory-names

  • 4 Votes
    11 Posts
    513 Views
    girishG

    @Jan-Macenka OK, I have made filename encryption optional in 7.3.

    fbb205df-5917-403b-92c5-9084a856c656-image.png

  • 1 Votes
    19 Posts
    676 Views
    marcusquinnM

    @murgero Yeah, makes sense.