I installed the E2EE app on the Nextcloud and found out that it stored a private and a public key in nextclouddata/appdata/end_to_end_encryption .
Since I am on a shared server, I would like to know if this is secure, assuming that the server admin (or if the datacenter gets hacked) can have access on an E2E folder.
I thought by setting a passphrase in the NC client, it will be stored locally on the PC, therefor it’s not possible to open the encrypted folder in the WebGUI.
So what is actually the story behind these two keys in appdata?
Actually i do not use the app End-to-End Encryption. But I am still interested in it.
“found out that it stored a private and a public key in nextclouddata/appdata/end_to_end_encryption”
private key on the Nextcloud server? Is it not a security risk? That doesn’t make any sense, does it? Or is they key encrypted? Can the server decrypt the key? E.g. with user password? Can someone explain it? I would be really interested. or is it just an one-time mistake?