What You'll Learn
- How machine-specific encryption works
- How custom password encryption works
- Security tradeoffs between modes
- Choosing the right mode for your use case
- Best practices for each mode
Overview
FileFortress encrypts your local database to protect sensitive information like cloud storage credentials and file metadata. You can choose between two encryption modes: automatic (machine-specific) or custom password.
Encryption Modes
Mode 1: Automatic Encryption (Machine-Specific)
How It Works
Uses your operating system's built-in encryption APIs (DPAPI on Windows, Keychain on macOS, Secret Service on Linux) to encrypt the database. The encryption key is tied to your user account on that specific machine.
Pros
- No password to remember
- Automatic and transparent
- Secure against file theft
- Simple setup
Cons
- Cannot access from other devices
- Lost if OS is reinstalled
- Tied to specific user account
Setup
filefortress initMode 2: Custom Password
How It Works
Uses a password you provide to encrypt the database with AES-256 encryption. You must provide this password (or a key file containing it) with every command.
Pros
- Access from multiple devices
- Portable across machines
- You control the password
- Can create key file for convenience
Cons
- Must remember password
- Must provide with every command
- Key file must be managed securely
- Lost password = lost database
Setup
filefortress --password YourSecurePassword init --create-key-file ~/filefortress.keyChoosing the Right Mode
| Use Case | Recommended Mode |
|---|---|
| Single device, personal use | Automatic |
| Multiple devices, same user | Custom Password + Key File |
| Automation / scripting | Custom Password + Key File |
| Highest convenience | Automatic |
| Highest portability | Custom Password |
Important
If you lose your custom password and don't have a backup, your database cannot be recovered. There is no password reset option.
Related Articles
- Password Change Guide - How to change your password
- Remote Encryption Guide - Encrypt your cloud storage
- Multi-Device Setup - Use on multiple devices