[Bug 20024] New: Backup files should be encrypted
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20024 Bug ID: 20024 Summary: Backup files should be encrypted Change sponsored?: --- Product: Koha Version: master Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 - low Component: Database Assignee: koha-bugs@lists.koha-community.org Reporter: black23@gmail.com QA Contact: testopia@bugs.koha-community.org CC: josef.moravec@gmail.com, katrin.fischer@bsz-bw.de, magnus@libriotech.no, paul.poulain@biblibre.com, rbit@rbit.cz Blocks: 18081 File produced by koha-dump should be encrypted. It contents personal data. It's GDPR related stuff. Referenced Bugs: https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=18081 [Bug 18081] [omnibus] GDPR (General Data Protection Regulation) -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20024 Jonathan Druart <jonathan.druart@bugs.koha-community.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jonathan.druart@bugs.koha-c | |ommunity.org --- Comment #1 from Jonathan Druart <jonathan.druart@bugs.koha-community.org> --- I do not think it is Koha's job to deal with that. We could create a wiki page to explain people how to encrypt their dump if they do not know how to. I am sure good sysadmins will use their own workflow and will not trust any --encrypt flags we are going to provide them. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20024 George Williams (NEKLS) <george@nekls.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |george@nekls.org -- You are receiving this mail because: You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20024 Mirko Tietgen <mirko@abunchofthings.net> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mirko@abunchofthings.net --- Comment #2 from Mirko Tietgen <mirko@abunchofthings.net> --- If there is an elegant way to do that, I'm not opposed to somebody providing a patch. I don't see how this would work in an automated process. I guess there would be a passphrase and/or key file on the same server. Not to speak of the actual Koha installation and database running on that server. If somebody has access to the server, they don't need the backup files to access personal data? Everything that happens afterwards (transferring backups to a different server etc.) is a custom workflow anyway, sysadmins could apply encryption during that process. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20024 --- Comment #3 from Mike <black23@gmail.com> --- It can be option (parameter) in backup cronjob. I thing that really relevant for cases when backups are tranfering on on other servers/storage. -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20024 Katrin Fischer <katrin.fischer@bsz-bw.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |WONTFIX Status|NEW |RESOLVED --- Comment #4 from Katrin Fischer <katrin.fischer@bsz-bw.de> --- I'll add my voice to this being a system administration task. If you move your files to another server for backup (which is a good idea), you can also encrypt them in the process. As always: please re-open if you disagree! -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org