Remix.run Logo
gchamonlive an hour ago

If they steal your homelab, e2ee doesn't help, it's encryption at rest. E2ee is for rogue devices sniffing the network, which is more or less of a concern depending on your setup. I'd not have unencrypted traffic in my network if I had for instance those shady TV boxes.

drdaeman an hour ago | parent | next [-]

That’s incorrect. E2EE means encrypted data leaves the device, stored encrypted, and server(s) have no keys to decrypt it, only your (or other) client software does.

gchamonlive 42 minutes ago | parent [-]

It's encryption both at rest and on transit. At rest there are levels of encryption, at object level or at filesystem level. E2ee for immich would mean the objects are encrypted and transmitting the data is encrypted. If the scenario is the server is stolen, you need encryption at rest. Even at FS level is enough.

AussieWog93 8 minutes ago | parent [-]

Not sure why you're continuing to argue, GP's right.

e2ee means that the encryption keys are stored client-side by the intended recipient. It's not just in transit and in rest.

hokumguru an hour ago | parent | prev [-]

TLS?