Contributed by jose on from the homeland-backup dept.
This method, NFS, is essentially what I do when I have an NFS server available in my environment. While I use rsync with ssh when I don't have an NFS server around, when I do have one I use rsync and NFS. My basic backup command mounts the NFS volume to the right place and executes my rsync command to copy the information I need to the server, and then unmounts the NFS system. It's a simple setup, but it's saved me hours of rebuilding. Check out the article for some ideas.
(Comments are closed)
By Anonymous Coward () on
By Anonymous Coward () on
a full system restore can be done with an openbsd installation floppy (provided the backups are temporarily accessible via ftp or http.) we've succesfully restored a system with this method.
a fairly basic shell script is used to gather some information from the system (as it does run on openbsd and linux) and then uses tar over ssh to store the backups. a job on the backup server prunes old backup tar files once in a while.
so basically it boils down to just:
gtar -c -f - -z -C / --ignore-failed-read --preserve var etc usr [...] | ssh backups@backupserver "cat - > /some/path/backup-serverhere-datehere.tar.gz"
Comments
By Anonymous Coward () on
By Anonymous Coward () on
By STEPHEN C () on
Comments
By Anonymous Coward () on
By Anonymous Coward () on
You shouldn't transmit any data unencrypted, unless if it's public data.
But backups sure aren't public data!
By Anonymous Coward () on
Comments
By STEPHEN C () on
SSH HAS AUTHENTICATION, I JUST DO NOT NEED THE DATA ENCRYPTED BECAUSE IT IS ON A TRUSTED LOCAL NETWORK.
Comments
By Anonymous Coward () on
Comments
By Matt () on
By Anonymous Coward () on
By Anonymous Coward () on
ftp.
By Anonymous Coward () on
That way you can rescue something changed from yesterday or go to the backups for something older that yesterday....
By Anonymous Coward () on
NFS for backups, is it a joke?
Comments
By Anonymous Coward () on
By Jedi/Sector One () j@pureftpd.org on http://www.pureftpd.org/
BEGIN;
SELECT * INTO ...
COMMIT;
Did you understand what InnoDB was designed for ?
You can also buy the dedicated hotbackup utility from http://www.innodb.com/
By Anonymous Coward () on
i've done rsync to keep two sets of directory trees in sync. rsync doesn't HAVE to go over a network to sync things up
By pixel fairy () on mailto:pixel [shift +2] [not photoshop] ORG(y)
what do you use?
Comments
By kaboom () on
By djm () on
Comments
By Anonymous Coward () on
Comments
By Random Person () on
Both of these are not always important if you have a private (and physically secure) network - i.e. a network segment inside the server room.
1) NFS servers use IP address as the only form of authentication. Then trusting that computer to say if the file access is on behalf of nobody or root.
so at the very least you need NFS over IPSEC(AH).
AH (part of IPSEC) allows you to authenticatic the source IP addresses of packets - which is exactly whats needed for this.
2) NFS doesn't encrypt anything. Once again this can be fixed with IPSEC (ESP in this case).
By dugsong () dugsong@monkey.org on mailto:dugsong@monkey.org
http://monkey.org/~dugsong/tmp/aestar
same usage as tar, except it prompts you for a passphrase on creation/extraction...
Comments
By Jeffrey () on
I never thought of doing it that way...
Very interesting indeed.
By odin () odin@cleannorth.org on http://cleannorth.org/
Quite an interesting script. I've been wanting encrypted amanda dumps for a while. A similar script around dump/restore, with an auto-generated aes key encrypted and saved with a public-key cypher may just solve that for me. Thank you for the idea.
--- aestar.orig Sat Mar 29 13:41:13 2003
+++ aestar Sat Mar 29 13:41:27 2003
@@ -39,7 +39,7 @@
tar $TARFLAGS - $* | openssl aes-256-cbc -e -kfile $PASSFILE -out $FILE
rm $PASSFILE
;;
- *t*|*z*)
+ *t*|*x*)
FILE=$1
shift
if [ -r $FILE ]; then
Comments
By Anonymous Coward () on
By dugsong () dugsong@monkey.org on mailto:dugsong@monkey.org
By Anonymous Coward () on
Comments
By Anonymous Coward () on
Yes, that's right, OpenBSD doesn't come with any cruft enabled, so no worries about NFS security, unless you want NFS :)
Comments
By Anonymous Coward () on
By Anonymous Cow Herd () on
Comments
By Anonymous Coward () on