^

rsw@jfet.org

• 200912 ( 2)
• 200910 ( 1)
• 200909 ( 4)
• 200908 ( 1)
• 200907 ( 3)
• 200906 ( 4)
• 200905 ( 1)
• 200904 ( 1)
• 200812 ( 1)
• 200811 ( 2)
• 200809 ( 1)
• 200808 ( 1)
• 200806 ( 2)
• 200805 ( 2)
• 200804 ( 2)
• 200803 ( 5)
• 200802 ( 4)
• 200801 ( 1)
• 200712 ( 5)
• 200711 ( 3)
• 200709 ( 1)
• 200706 ( 1)
• 200704 ( 4)
• 200703 ( 1)
• 200702 ( 3)
• 200701 ( 5)
• 200612 ( 3)
• 200610 ( 2)
• 200609 ( 2)
• 200608 ( 3)
• 200607 (10)
• 200606 (10)
• 200605 ( 9)
• 200604 ( 7)
• 200603 ( 9)
• 200602 (11)
• 200601 (26)
• 200512 (20)
• 200511 (22)
• 200510 (19)
• 200509 (13)
• 200508 ( 2)
• 200507 ( 3)
• 200506 ( 7)
• 200505 (26)
• 200504 ( 9)
• 200503 (15)
• 200502 (20)
• 200501 (28)
• 200412 (16)
• 200411 ( 5)
• 200410 (18)
• 200409 ( 7)
• all

blogroll

• Amrys
• Anna
• Ariel
• Brittany
• Christine
• Cyrus
• Gautham
• Hippo
• Issel
• Jack
• Jeff
• Jim
• Johnston
• Kristin
• Mar
• May
• Mich
• Michelle
• Rodin
• Russ
• Sam
• Stephanie
• Wax0r
• Woz

can you back it up? no, no, that box... back it up

After a hard drive crash scare on proton (my colo machine) earlier this week (no data lost, fortunately!), I decided it was time to get serious about regular backups.

I did a bit of research and initially settled on Bacula, but because of licensing issues the Debian packages do not link to OpenSSL. This means that I can't encrypt even the handshaking, let alone the data transfer, between client (proton) and backup server (positron).

After a little more searching, I found BoxBackup, a solution geared towards backing up across a WAN. It uses SSL/TLS authentication: the server has a signing key and clients must generate keys and then have them signed with the server key before they can connect. On top of that, each client has another key it uses to encrypt the data it stores on the backup server so that it's transmitted and stored securely, and clients can be sure that their data is secure even from the backup server's admins.

Setup was a breeze (somewhat simpler than Bacula, though neither is particularly difficult), and while the initial 1.6Gb of data was somewhat unpleasant to transfer over my DSL connection, I expect that the incremental change data should not unduly load my network connection.

Now go set up your backup server already.

[ permalink | 2 comments ]