X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=input%2Fhowto%2Fbackup.creole;h=0e64bb11cec223c86ef9780628fe9973d97c4ad9;hb=9c46e70ce10c760a91380e2afa4698f63a5fcdaf;hp=aa6abaec8ee83136afc5798c89415e0cfc0640cb;hpb=480869a0311e4f477ff040c0f1e6f0b62705c7f8;p=mirror%2Fdsa-wiki.git diff --git a/input/howto/backup.creole b/input/howto/backup.creole index aa6abae..0e64bb1 100644 --- a/input/howto/backup.creole +++ b/input/howto/backup.creole @@ -1,6 +1,6 @@ = Debian backup = -bartok.debian.org alias backup.debian.org is Debian's backup machine. +beethoven.debian.org alias backup.debian.org is Debian's backup machine. == Backup organisation == @@ -41,40 +41,13 @@ Directories: * install da-backup on the client * create a crontab that runs da-backup daily at some convenient time * configure the directories in {{{/etc/da-backup}}} -* create a new SSH key pair for each configuration file foo in - {{{/etc/da-backup/}}} with {{{ssh-keygen -t rsa -f /root/.ssh/da_foo"}}}: - -{{{ - cd /etc/da-backup && - [ -r /root/.ssh ] && - for i in *; do - echo $i && - if [ -e "/root/.ssh/da_$i" ]; then continue; fi && - sudo ssh-keygen -t rsa -f /root/.ssh/da_$i -N '' -C "da-backup for $i on `hostname -f`"; - done - - echo "#" && - echo "# `hostname -f`" && - echo "#" && - myip=`host $(hostname -f) | \ - grep has\ address | \ - sed -e 's/.*address //'` && - cd /etc/da-backup && - for i in *; do - echo "command=\"rsync --server -vlHogDtprz --delete --delete-after --ignore-errors . /org/backup.debian.org/staging/`hostname -f`/$i\",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,from=\"::ffff:$myip,$myip\" `cat /root/.ssh/da_$i.pub`" - done && echo -}}} - -* install the public components of the key with the proper command in - puppet {{{modules/ssh/templates/authorized_keys.erb}}} for bartok, start a new section for each host. Do a puppetrun on bartok. * configure how many copies of the directory should be kept in - {{{/etc/da-backup-manager/}}} -* mkdir the target directories (at least the first level dir is required. the last directory in the path rsync will create itself). + beethoven's {{{/etc/da-backup-manager/}}} * run {{{da-backup -v}}} on the client to see if it all works. -* Backup items should either be called {{{/}}} or - {{{services/}}}, i.e. always use a two-level directory layout. +* Backup items should be called {{{/}}}. + Historically we also used {{{services/}}}. == Consistency checks ==