|
|
|
|
|
|
by jospoortvliet
3837 days ago
|
|
|
Self hosting does have this issue in general, yes. It is a bit harder to get at security vulnerabilities in ownCloud as was initially portrayed in the thread you mention (we publish CVE's 2 weeks after updates have hit the net, and these updates contain unmarked security updates). Client side encryption is a great solution but you lose out on most of the benefits of the cloud. Honestly, I don't know. I haven't seen any of such attacks but of course, with about 3 million users, ownCloud isn't a HUGE target. I just don't like the idea of giving up on self hosting ;-) |
|
|
With regards to 'usability first' vs 'security first' approaches, this is what 'security first' gets you: https://twitter.com/davide_paltri/status/676696685456826368
I rest my case ;-)