Is Nextcloud 'secure'?

I have not much understanding of coding and server security. That being said I’d like to hear some comments on a remark someone with more background made about Nextcloud a while ago (without going deeper into any specifics)

A:) "Nextcloud in not secure"
B:) "why?"
A:) "because it’s php"
B:) :unamused:

beyond the fact this is a way too generic statement … is there any grain of truth behind that from anyone perspective here?

Every programming language has its flaws. To say this one is more secure than another just prooves that that someone is either just trolling or does not know what he is talking about.



I totally agree with himbeere. No matter what programming language you use, if you’re bad at coding or have a bad quality assurance you will have security holes.

And here Nextcloud does a great job. They hire security specialist to perform a security audit and furthermore they have a well paid bug bounty program:

The technologies they use (Authentication, CSP, …) are also state of the art.

And as always with every application/ service: you need to stay updated to profit from security fixes. Old software is always the biggest security flaw.

1 Like

thanks everybody. That sounds reasonable.

I’m teared apart about whom to give the solution mark. The fast @himbeere or the more profound @Schmu

well ok, i know that both of 'em are quite modest and never would claim anything for themselves. so i think the solution-mark would better go to @himbeere b/c it was the fastest answer and the one @Schmu agreed to as well… hope this is ok for everyone

Absolutely! :slight_smile:
Mark the answer of @himbeere as solution, please :+1:

1 Like

It was explained in the FAQ from owncloud:

To mark the answer from @Schmu as solution would have been fine for me too. What’s the matter with that solution thingy anyways? Do I win a plant pot at some point? :slight_smile:


something along that lines.

your ‘reputation’ goes up = you feel respected = you are motivated to give more input in the future

1 Like

This topic was automatically closed 25 days after the last reply. New replies are no longer allowed.