I suddenly can’t access my server-only files. Some of them (mostly image files), I can open on the web app. But whenever I try to download them and open them locally, they seem to be corrupted. When I opened the files in notepad, I noticed that they all suddenly started with this string:
Upon looking it up, it looks like this means that my files got encrypted. I never turned on encryption on Nextcloud. I haven’t even touched the settings in years. So I also don’t the key/password to decrypt any of these files.
For now, I’ve disabled syncing and deleting files locally to prevent the my other files from getting encrypted.
For reference, I’m using tab.digital with version 30.0.6.
Edit: I contacted support and they gave me a zip file with all my files unencrypted. I just replaced all my files with it.
Joplin task manager had been syncing between Android, Windows and Linux fine for months then suddenly started throwing errors.
Investigation led me to find that files now have this header:
Blockquote
HBEGIN:oc_encryption_module:OC_DEFAULT_MODULE:cipher:AES-256-CTR:signed:true:useLegacyFileKey:false:encoding:binary:HEND
Blockquote
I’m thinking that somehow all my files got encrypted. It is not something I intentionally did and I really don’t think that I accidentally did it either.
I actually have 2 Free accounts at Tab and it appears that both have been encrypted. Checked settings - Encryption is not turned on.
What I find is that:
List item
.txt, .odt, .pdf, and .mov files are no longer viewable
.jpg files are still viewable
I am not able to find any way to contact them - Tab Digital - to ask about this.
I’d love to hear any and all suggestions on how to reach them about this and how to regain access to the files that have been encrypted.
From the looks of it this is server-side encryption, not E2EE. So client-side encryption settings would are not relevant.
The relevant settings would be under Administration settings->Security->Server-side encryption in the Web UI of the server.
The odd thing is that if encryption was activated accidentally, normally it would just work and mostly be invisible. It almost sounds like it was activated accidentally then disabled without doing the (required) decryption step before disabling.
What you said about how it would normally work makes sense. I know for certain that “I” did not activate it and then deactivate it. There is no way I would have been that brain dead. And I would als0o have not missed a required decryption step.
I am not sure what you mean by -
[quote=“jtr, post:6, topic:221596”]
I’m guessing you don’t have occ access via Tab?
[/quote] but I’m guessing this is something I would have if I was self hosting - like Admin privileges? No- probably not.
I figured out how to send a support ticket to Tab. Last time I did that it took weeks to get an answer but . . .
Thank you for the link, Steve,
They sent a zip with all my files decrypted. I deleted all my former encrypted files in Nextcloud - and uploaded the new ones. Everything works just fine again :-)…
