Hi,

French user here coming from Seafile, I'm "testing the waters" to see if I could migrate all my data and friends on your implementation of a "self-hostable cloud".

I really like the UI, the features Sync-In has, and the fact that you interface with ldap & onlyoffice made my test in a real environment easier :).

What I could not understand easily from reading the documentation, is how you protect user data from the admin, or from anyone accessing the server it's hosted on.

For now, from a ssh term as root, I seem to be able to access "all files" (while I've only been testing with a few documents created on the fly from the web gui). Data isn't encrypted on disk, making it easy for a root access to read them.

This seems to me this is a case voluntarily dismissed, otherwise this means I missed something. I suppose we could associate this with the notion of "zero-trust" ?

I'd like to know if you have this already covered, if you plan to cover it, or if you explicitly choose not to cover this "usecase" :).

Thank you in advance.