While browsing Duplicati-server.sqlite, I noticed that in the Option table there is a passphrase row with a clear text password. I was lazy setting up my test environment for duplicati, so I used the same password for logging in to duplicati, for backup encryption and for sftp login. (A horrible w…

Clear text password stored in Duplicati-server.sqlite

JonMikelV June 26, 2018, 4:19am 16

Yes, the Windows (only) database is RC4 “encrypted” but I’m not sure what the password is.