Change backup architecture #3

Closed
opened 2023-04-23 13:47:15 +00:00 by pim · 0 comments
Owner

Current architecture is unfortunately unsatifactory.
New plan is to have a push architecture again. However, this time we will use append-only backups. It seems it is not easy to get around creating a separate user for every backup client. We could automate this when configuring the hypervisor. The backup client logs in using their own username, and they are authenticated using SSH user certificates.. We additionally force a command to execute borg in append-only mode (see: https://borgbackup.readthedocs.io/en/stable/usage/notes.html#append-only-mode), and restrict Borg to one repository which could be in the user's home directory (see: https://borgbackup.readthedocs.io/en/stable/deployment/hosting-repositories.html#hosting-repositories).

Current architecture is unfortunately unsatifactory. New plan is to have a push architecture again. However, this time we will use append-only backups. It seems it is not easy to get around creating a separate user for every backup client. We could automate this when configuring the hypervisor. The backup client logs in using their own username, and they are authenticated using SSH user certificates.. We additionally force a command to execute borg in append-only mode (see: https://borgbackup.readthedocs.io/en/stable/usage/notes.html#append-only-mode), and restrict Borg to one repository which could be in the user's home directory (see: https://borgbackup.readthedocs.io/en/stable/deployment/hosting-repositories.html#hosting-repositories).
pim added the
Long-term plan
label 2023-04-23 13:47:15 +00:00
pim closed this issue 2023-04-26 14:12:27 +00:00
This repo is archived. You cannot comment on issues.
No milestone
No project
No assignees
1 participant
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: home/lewis#3
No description provided.