Backup File Protection

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #85417
    Bob
    Participant

    I’m looking for some “best practice” guidance with respect to protecting backup files containing very sensitive data.

    1) The updraft directory is already .htaccess-protected. Anything else to consider with respect to making sure the files aren’t available for unauthorized download?

    2) I assume we should turn on password protection. For decryption, I suspect the client will be uncomfortable about online decryption. What’s a good option for local decryption?

    3) Any other suggestions?

    Thanks.

    #85420
    udadmin
    Keymaster

    1) The updraft directory is already .htaccess-protected. Anything else to consider with respect to making sure the files aren’t available for unauthorized download?

    It’s also protected by index.php. It’s only vulnerable if, for some crazy reason, you decide to delete both of those files.

    2) I assume we should turn on password protection. For decryption, I suspect the client will be uncomfortable about online decryption. What’s a good option for local decryption?

    It’s using standard AES decryption. So, you can use any AES decryption tool you like. I don’t have a particular recommendation (few clients understand encryption!), but, there’s an example script in wp-content/plugins/updraftplus/example-decrypt.php that you can adapt to your heart’s content.

    David

    #85425
    Bob
    Participant

    Great. Thanks.

    Bob

Viewing 3 posts - 1 through 3 (of 3 total)
  • The topic ‘Backup File Protection’ is closed to new replies.