For now my server doesn’t have very important data most of it are your “Linux isos” I can just download again and I’m thinking of starting to move my file and photos to the server but in afraid. What if I get a ransomwarei don’t realize and all my backups get encrypted too? Or if the backups are corrupted and my disks breaks? But also I’m afraid about cloud because I’ve seen some posts about people getting their google accounts closed without notice for breaking TOS (maybe they did something wrong maybe not).
You must log in or register to comment.
A) Make backups B) take them offline.
My backup strategy:
Data:
- Sycnthing with 1x Copy with my Clients and 1x Copy on my Server accessible via Nextcloud
- Daily Push-Backup with of my Nextcloud-Data-Folder via Kopia to Backblaze
- Daily Pull-Backup of my Nextcloud-Data-Folder via QNAP-NAS in the basementVM:
- Daily Backup of my VM’s to a Proxmox Backup Server running on QNAP-NAS
- Daily Backup of my VM’s to BackBlaze (but encrypted before)Still, I’m not fan of having just one Cloud-Backup. So I think I will also get Hetzner Cloud Storage for Borg Backup additional to Kopia.
Goal:
- Different Hardware (Server, QNAP, etc.)
- Different Backup software (Syncthing, Kopia, Borg)
- Different Backup technique (Push, Pull, Snapshots)
- Different LocationsHow do you prevent your backups from file corruptions being backed up?
Versioning is helping, I can go one year back in history.
No… I have proper, tested backups.
I backup to Backblaze b2. I encrypt myself using rclone. Costing me $1-2/mo for about 100Gb that I’m currently using.
API key I use for automated backups is pretty much limited to write only and files are set to hidden when deleted, so not much risk, just an annoyance, if the key were stolen and they defaced my backups.
Once a year I might go delete some history to reduce my usage.
I lean towards scripts to automate setting up a system, so I don’t do full system backups. Downloaded video I also mostly skip using mirrored storage. In the event of a real disaster, its an acceptable loss.
Have multiple copies of the data. Use snapshots, they don’t get encrypted by a ransomware because they are read only and can’t be accessed via samba or nfs. It’s only a problem when the attacker gets root access to your NAS. Use a cloud provider like backblaze and backup your data encrypted. If you are really scared that ransomeware data will overwrite your backups use 3-2-1 and Grandfather-father-son backup strategy. But all this comes at a cost.
The key is to do regular backups to a different location, and to keep previous versions as read-only backups for a certain timespan. If something happens to the local data you can just restore from the remote backup, and also pick an unmodified previous version in case of a ransomware attack.
E.g. I do a daily encrypted cloud backup of everything that can’t just be downloaded again, and the backup provider keeps previous versions for 30 days.
321 rule - anything super critical also gets off-sited to the cloud.
Currently yes. But in the future, no.
3-2-1-1-0 and you have 99.9999% covered. I replicate all backups between four physical locations, doesn’t get more overkill than this. For personal use I even have a backpack with external HDD in it, that syncs the most important data every day.
Meh you don’t really lose your data , do you. I mean , we all know where it is.
Personally my NAS isn’t my main storage. I still use Google Photos and Google Drive for my important stuff, I just need to configure Rclone to download my stuff on it.
The one thing I’m really self hosting only is my music, outside of the couple of CDs and downloading from iTunes, I don’t have a proper backup.
I run Proxmox VE and Proxmox Backup Server on two machines at the same time. I pull the main backups from the main machine, where all the Vdisks are to the second one. Until now it works like a charm. The third of site machine is in the making
I’d be more concerned to lose data that is stored in the cloud than on my private network.
The adage “there is no cloud, it’s just someone else’s computer” is still true.
If you are afraid to lose the data on your clients and servers in your private network, improve your backup strategy and make sure to have one backup off premise (in a safe deposit box if needs be).
It doesn’t hurt to improve overall security on your private network, either. 😉
I’d be more concerned to lose data that is stored in the cloud than on my private network.
The adage “there is no cloud, it’s just someone else’s computer” is still true.
If you are afraid to lose the data on your clients and servers in your private network, improve your backup strategy and make sure to have one backup off premise (in a safe deposit box if needs be).
It doesn’t hurt to improve overall security on your private network, either. 😉
Piggyback: anyone using LTO for backup/archival in their homelab?
