[Discuss] full disk backups

Timothy Lyons lyons at geekcq.com
Mon Aug 19 16:22:34 EDT 2019 

That looks like a nice simple solution. my concern would be with it's dependence on EncFs, which they admit may have significant flaws.

"EncFS is probably safe as long as the adversary only gets one copy of the ciphertext and nothing more. EncFS is not safe if the adversary has the opportunity to see two or more snapshots of the ciphertext at different times. EncFS attempts to protect files from malicious modification, but there are serious problems with this feature."

If your backups are local or to remote hardware you *fully* control, then it's probably sufficient.

Thanks for the share - always good to know of alternatives!

Kindest Regards,
--Tim

---

Timothy M. Lyons, CISSP

lyons at geekcq.com

+1-978-309-9595


This message contains confidential information and is intended only for the individual(s) named. It may also be privileged or otherwise protected by work product immunity or other legal rules. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version.
________________________________
From: Discuss <discuss-bounces+lyons=geekcq.com at blu.org> on behalf of Jerry Feldman <gaf at gapps.blu.org>
Sent: Monday, August 19, 2019 11:19
Cc: Boston Linux and Unix <discuss at blu.org>
Subject: Re: [Discuss] full disk backups

I currently use Back In Time https://backintime.readthedocs.io/en/latest/
This is a snapshot like system with a GUI front end. I used to use
rsnapshot. Both are based on rsync. The reason I switched was because Dick
Miller swears by it and I wanted to try it. I actually preferred the
rsnapshot format, but backintime essentially does the same thing.


On Mon, Aug 19, 2019, 10:38 AM Rich Pieri <richard.pieri at gmail.com> wrote:

> On Mon, 19 Aug 2019 14:00:52 +0000
> Timothy Lyons <lyons at geekcq.com> wrote:
>
> > Sorry if I'm jumping into this late but I'd be remiss if I didn't
> > throw restic into the mix. Simple, SECURE and flexible backups with
> > multiple target options (local, cloud, etc).  Fully configurable as
>
> Sorry... but... the terms "backup", "secure" and "cloud" do not belong
> in the same sentence. If it's in a public cloud then it can be
> compromised by a third party bad actor. Witness the Code Spaces breach.
> Not saying you shouldn't use public cloud storage; saying you should be
> cautious in your trust of it.
>
> On the subject of Clonezilla: it's not a backup tool. It's an imaging
> tool. It can be used as part of a backup system: the physical volume
> analogue to copying a virtual machine's vdisk files to other storage.
> Using it this way is cumbersome on Linux systems where realistically
> the only thing that needs a low-level copy is the boot block of the
> boot device and that only once. It would be more useful on a dual-boot
> Windows/Linux machine using Clonezilla command line to clone the
> Windows system volumes.
>
> --
> Rich Pieri
> _______________________________________________
> Discuss mailing list
> Discuss at blu.org
> http://lists.blu.org/mailman/listinfo/discuss
>
_______________________________________________
Discuss mailing list
Discuss at blu.org
http://lists.blu.org/mailman/listinfo/discuss

More information about the Discuss mailing list