Security Articles
Bruteforce protection and Reverse Proxies
Nextcloud offers native support against brute force protection attacks, thus significantly enhancing your users' security. The protection works on a per IP basis; this means that once a single IP address has performed too many invalid logins... Read More
SELinux configuration
Security-Enhanced Linux (SELinux) is a mandatory access control (MAC) security mechanism implemented in the kernel. If you install Nextcloud on a Linux distribution where SELinux is enabled, you may encounter permission issues with your Linux... Read More
How does the server-side encryption mechanism work?
After initial login of the user, a public and private key pair are generated and stored in the /files_encryption/ folder in the data folder.The private key is encrypted with a PBKDF2 derivate of the login password using the SHA256 cipher and going... Read More