When you think about a firewall, you think about a complicated tool big companies use to keep hackers out of their networks. And perhaps you think about the many movies where weird visuals are used to represent them being used and broken through. Nextcloud has the File Access Control app which acts as a bit of a firewall and while it helps protect businesses secrets, there are use cases for home users as well.
Two factor authentication has becoming quite popular in the last months/years. So you go ahead and enable all those fancy things on various websites you use. Note that they often provide you with a list of recovery keys! Where do you put those keys, to make sure you don’t ever lose them? There is this self-hosted cloud solution you use, with the slogan “a safe home for all your data“. And it sure can help with this!
By putting your keys on your Nextcloud you keep them to yourself. Yet, Nextcloud aims to make sharing easy. You don’t want to accidentally share your recovery keys, do you? Nor would you want your sync client on your phone to, all too easily, give access to these files. So is there an extra layer of protection possible, one that protects from accidental sharing or a stolen phone?
This is where the File Access Control app joins the party:
Your files can now no longer be downloaded and synced with the android client or a web browser.
This would disallow the client and only allow the web interface (and only Firefox!) from the local network.
Now to be sure the files are also not delivered to your laptop, you can add a second rule that only allows the Desktop client when the IP is the local IP of your Desktop PC which accesses the instance via the LAN rather then the internet:
As you see, the File Access Control app can help ensure your data stays within the confines of your house or follows other rules which ensure you don’t accidentally make them available where you wouldn’t want them. Note that it is NOT a super secure solution, you can’t use it to replace https or other encryption solutions! But it can avoid mistakes through accidental sharing and such.
Post by Joas, main author of the File Access Control app
Nextcloud Enterprise Day is soon here and we have an amazing lineup of speakers providing insightful talks! One of those speakers is George Imrie from Nextcloud customer T-Systems – Deutsche Telekom’s business-customer IT affiliate. T-Systems is a digital transformation specialist, with operations in 20 countries worldwide.In preparation for their talk at the Nextcloud Enteprise Day […]
Read More
Last week, Nextcoud CEO Frank Karlitschek appeared on one of Germany’s biggest public service TV broadcaster’s: ZDF. Watch the news item by ZDF here. Interviewed in Nextcloud’s Berlin office, Frank explains the challenge the company faces up against big tech giants like Google and Microsoft. “That’s all very difficult for us, due to the fact […]
Read More
Nextcloud Enterprise Day is soon here and we have an amazing lineup of speakers providing insightful talks! One of those speakers is Mr. Birkner from the State Institute for School Quality and Teacher Training in Saxony-Anhalt (LISA) in Germany. In preparation for his talk at the Nextcloud Enteprise Day on June 13th, we asked him […]
Read More
