13:11 <ckauhaus> Vulnerability roundup 49 is out: #48775, #48776, #49777

13:12 <{^_^}> https://github.com/NixOS/nixpkgs/issues/48775 (by ckauhaus, 4 minutes ago, open): Vulnerability roundup 49 (master)

13:12 <{^_^}> https://github.com/NixOS/nixpkgs/issues/48776 (by ckauhaus, 3 minutes ago, open): Vulnerability roundup 49 (release-18.09)

13:13 <ckauhaus> key stuff: samba, wpa_supplicant

16:05 <pie__> od you guys know anything for a locally encrypted/decrypted remotely stored storage thing? basically encrypted remote backups, but i dont want the keys on the remote server

16:11 <pie__> otoh i wonder if i should just have encrypted zfs (?) on both sides and just transfer snapshots periodically.i wonder if there's such a thing as transferring undecrypted zfs sapshots

16:21 <flokli> pie__: If it's backups, there's also borg (borgbackup.readthedocs.io). It has a mode where you jail users into a borg serve command limited to a specific path. you can set it up so that the backend doesn't have the keys to decrypt

18:36 <lrvick> pie__: look at duplicity

18:36 <lrvick> it works like rsync, but can use most cloud storage backends as the remote sided of the command, and pgp encrypts locally before transmitting files

18:36 <lrvick> incremental backups too

18:37 <pie__> someone recommended me restic, i think it might be a better duplicity?