Getting Started
- Architecture
  - Backup Lifecycle & data flow
  - Backup workers
  - Our infrastructure
- Features
  - Scheduling
  - Retention
  - Notifications
  - Incremental Backups
  - Backup Automation
  - Backup Webhook
  - Backup Trigger URL
  - Teams, Projects & users
  - Backup storage
- Security & Privacy
  - Backup Encryption
  - How your data is processed
  - Uninstalling
  - How can I restrict/limit the permissions provided to SimpleBackups?
  - Data Processing Agreement
- Account & Billing
  - Trial plan
  - Free plan
  - Subscriptions
  - How to cancel my account?
  - Manage invoices and payment receipts
  - My payment failed, what should I do?
  - How to redeem a coupon?
Database Backup
- MySQL Backup
  - Restore a MySQL backup
  - Guides
  - How to dump stored procedures / functions
  - How to Enable Binary Log for MySQL or MariaDB
  - How to create a Passwordless MySQL Backup
  - FAQ
- PostgreSQL Backup
  - Restore a PostgreSQL backup
  - Guides
  - FAQ
- MongoDB Backup
  - Restore a MongoDB backup
  - Restore MongoDB Atlas Collection using MongoDB Compass
  - Guides
- Redis Backup
  - Restore a Redis backup
- DBaaS Providers
  - How to create serverless backups for managed databases?
  - DigitalOcean Managed Redis
  - DigitalOcean Managed MySQL
  - DigitalOcean Managed PostgreSQL
  - DigitalOcean Managed MongoDB
  - DigitalOcean Managed database backup
  - Supabase PostgreSQL
  - AWS RDS
- Help & Tips
  - FAQ
Server & File Backup
- Create a file/server backup
- Restore a file/server backup
Storage Backup
- FAQ
- Guides
- Storage backup in a nutshell
- How to preserve S3 or DigitalOcean Spaces metadata on the files/objects
Server & Volume Snapshot
- Providers
  - DigitalOcean
  - Amazon Lightsail
  - AWS EC2
  - Exoscale
  - Hetzner
  - Scaleway
  - UpCloud
  - Vultr
- Resources
  - Restore a Snapshot
  - FAQ
SaaS App Backup
- Apps
  - Knack
  - GitHub
- Resources
  - FAQ
Storage Providers
- AWS S3
- Amazon S3 Glacier
- Azure Blob
- Alibaba Cloud
- Backblaze B2
- CloudFlare R2
- DigitalOcean Spaces
- Dropbox
- Exoscale
- Egnyte
- Filebase
- Google Cloud Storage
- Google Cloud Storage (S3-compatible credentials)
- Google Drive
- Hetzner Storage Box
- IDrive e2
- MinIO
- NAS or local volume
- Storadera
- SimpleStorage
- UpCloud
- Wasabi
Help, Tips & Troubleshooting
- Connecting a Server
  - SimpleBackups IP addresses (firewall)
  - Automatically provision servers
  - Errors & Troubleshooting
- Storing your backups
  - Errors & Troubleshooting
  - How to customize the backup storage path
  - Backup Storage FAQ
  - Connecting read-only storage bucket
  - Google Cloud Storage Updated
- Backups & Logs
  - Why there are more Backup Log files on my Storage than expected?
  - How to download individual files when backing up all databases?
  - How to decrypt your AES-encrypted backups?
  - How to generate an RSA PEM (asymmetric) key pair?
  - Backup encryption FAQs
- Backup Settings & Options
  - Custom backup schedule via cron
- Others
  - curl 35 ssl error
  - The displayed Storage Usage seems incorrect, what should I do?
  - Can I connect multiple "Cloud Providers" within the same account?
  - Solving Error 2013: Lost connection to MySQL server during query when dumping table
  - Backups failing for MySQL server versions (5.7.41 and 8.0.32)
  - PostgreSQL Backup Privileges Issues
  - pg_dump: error: Error message from server: SSL SYSCALL error: EOF detected
  - Google Drive - unusual traffic from your computer network
More

How to decrypt your AES-encrypted backups?

Decrypt backups step by step using your RSA private key and AES

Steps to decrypt AES-encrypted backup

Download your encrypted backup

Download the AES encryption passphrase

Decrypt the encryption passphrase using your RSA private key

Decrypt your backup using the decrypted passphrase

Step 1. Decrypt your encryption passphrase first using the following command:

cat encryption-passphrase.pass | base64 -d | openssl rsautl -decrypt -inkey private-key.pem -out decryption-passphrase.txt

Where private-key.pem is your private key (you never share it with anyone), encryption-passphrase.pass is the encrypted passphrase used to encrypt your backup via AES-256.

Step 2. Finally, to decrypt your backup, you could use the following command:

openssl enc -d -aes-256-cbc -md sha512 -in encrypted-file-from-simplebackups.sql.gz -out decrypted-file.sql.gz -pass file:/home/path/decryption-passphrase.txt

Where encrypted-file-from-simplebackups.sql.gz is your encrypted SimpleBackups backup archive, decryption-passphrase.txt is the decrypted passphrase which will decrypt your backup.

⚠️

Notes

The encryption-passphrase.pass can only be decrypted using your RSA private key

Your backup can only be decrypted using the decrypted encryption-passphrase.pass

We store your encryption-passphrase.pass on our side, it is unique per backup run

You are responsible for securing, and keep your private-key.pem, private

No one can read or decrypt your encrypted backups, except you

Did this answer your question?

😞

😐

🤩

Last updated on January 24, 2023

How to download individual files when backing up all databases? How to generate an RSA PEM (asymmetric) key pair?