this post was submitted on 23 Sep 2024
51 points (96.4% liked)

Selfhosted

60542 readers
964 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.

  8. AI-related discussions and AI-involved promotional posts have additional requirements for tagging, as noted in Rule 7 and the AI & Promotional Post Expanded Rules post.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
 

Hey everyone! :)

I am currently looking to replace Obsidian with a self-hostable alternative (that preferably also uses Markdown - but it's not a must) but instead of storing the files directly on disk has a way to have all the files within in an encrypted vault / binary format.

Reason being I have very very sensitive data that needs to be stored (employee & medically related).

I read that Logseq used to support this feature but it has since been deprecated, some light googling didn't surface any results other than that so I would be delighted if anyone had any suggestions!

Thanks so much in advance for any and all help! :)

edit: Forgot to mention that it needs to support Linux as well as Android

you are viewing a single comment's thread
view the rest of the comments
[–] Jocarnail@lemmy.world 5 points 2 years ago (3 children)

If you are storing manly on one device and are looking for a relatively "simple" solution for encryption at rest I would suggest to just encrypt the folder/directory/image the data are living in.

Of course, this way you have to decrypt the data while you are using it. However, it separates the responsibility from the note taking app.

This may or may not be a good solution for your use case, but it should be fast and easy to implement.

I used to do this with some mildly sensitive data using a mac encrypted disk image with plain markdowns files inside. I accessed the files with vscode, but I don't see why it wouldn't work with Obsidian. It may just be a bit of a hassle to open the vault each time.

[–] qaz@lemmy.world 4 points 2 years ago (1 children)

This is a security risk! Some note taking apps store data outside of the notes directory (e.g. Logseq)

[–] Jocarnail@lemmy.world 4 points 2 years ago (1 children)

Good to know, but this is a security risk of the note taking app, not of the encryption method itself.

[–] qaz@lemmy.world 1 points 2 years ago

Since the method is encryption of the notes folder, I would consider it to be one

[–] daddy32@lemmy.world 2 points 2 years ago

I think this is the best answer. Separation of concerns and all. And OP can keep using whatever notes app he is right now or even switch to another, without the additional encryption requirement.