Change backup architecture #3
Labels
No milestone
No project
No assignees
1 participant
Due date
No due date set.
Dependencies
No dependencies set.
Reference: home/lewis#3
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Current architecture is unfortunately unsatifactory.
New plan is to have a push architecture again. However, this time we will use append-only backups. It seems it is not easy to get around creating a separate user for every backup client. We could automate this when configuring the hypervisor. The backup client logs in using their own username, and they are authenticated using SSH user certificates.. We additionally force a command to execute borg in append-only mode (see: https://borgbackup.readthedocs.io/en/stable/usage/notes.html#append-only-mode), and restrict Borg to one repository which could be in the user's home directory (see: https://borgbackup.readthedocs.io/en/stable/deployment/hosting-repositories.html#hosting-repositories).