Which tool can open encrypted DB


#1

Does anyone know a tool that can open the encrypted Duplicati database file?

My “standard” Browser Tool Database Browser ELT-tools.com does not support encrypted SQLite.

And DB Browser for SQLite http://sqlitebrowser.org/ asks for password but does not open the database.


image


#2

Depending on what OS is in use you may need something with RC4 support built in:

I think I’ve seen some people mention specific tools they’ve used but I’m not sure how to search the forum for them, sorry.


#3

Oh that’s interesting. I thought it was unencrypted on all OS’es (I guess I never checked Windows).


#4

To decrypt the database, quit all running instances, then start either Duplicati.GUI.TrayIcon.exe or Duplicati.Server.exe from the commandline with the argument --unencrypted-database and Duplicati will decrypt the database for you.

There is an older issue discussing this here:


#5

At the time there was RC4 support on the Windows build, but almost no Linux distros have that in SQLite (it does probe for it).

Requiring a custom SQLite binary on Windows would be a showstopper for many users.


#6

It’s on windows.

Thanks to @kenkendk for the the decryption hint. I have made the decryption by coping the database into the debug/bin folder. I had a look inside it and it is a very easy and self explaining database structure!

So if someone knows a tool (for windows) an answer is still welcome.


#7

I found this thread via Google, sorry that i’m reviving this dead body:
I’m running the Windows GUI Version with basically no custom settings.
Does that mean that the Database itself can be considered hardened?
Because recreating the Databases is such a pain, I considered syncing them via the cloud.
I hesitated because i was afraid of basically publishing a list of all my files, and encrypt those again would really make it difficult, becuase i planned on just using symlinks.


#8

I don’t think so. Probably anyone with Duplicati who gets your database can open it with theirs, using --unencrypted-database (just as you could – and it’s not tied specifically to a secret only YOU know).

Clear text password stored in Duplicati-server.sqlite gets into the specifics:

Yes, that was the idea with the RC4 encryption. It is not strong, and has a known password, but at least you cannot do string scanning on the harddisk to find the contents.

For good encryption on database backups, Duplicati itself can do that, but orchestration is important, because backing up the database of currently running backups risks locking and consistency trouble.


#9

Wouldnt it for an expierienced developer a ten minute job to create a option of just copying the database and the lastest job.export to the destination?
That way you’re half way there for distributed deduplication and disaster recovery is greatly improved.

I was just planning “mklink” hardlinking it to my OneDrive, but i guess that is not adviseable then.


#10

I doubt anything happens in ten minutes… If you mean copying the database of a job as part of the job, this runs into the problems I mentioned earlier – it might be locked when needed, and in any event gets instantly obsolete. If you mean putting up a job export including everything needed for restores, including passwords:

Entire configuration backup

And I’m not the one making such a call, but you can see from the above that some key people have thought.