X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=input%2Fhowto%2Fbackup.creole;h=0e64bb11cec223c86ef9780628fe9973d97c4ad9;hb=ef56d88b1b710e8c3577a26ea63f93fe2592bfc2;hp=e208d4062f989ee907dae8556bd9039a300e0608;hpb=c958df92a4885850719e62cb999af7cad460dcda;p=mirror%2Fdsa-wiki.git diff --git a/input/howto/backup.creole b/input/howto/backup.creole index e208d40..0e64bb1 100644 --- a/input/howto/backup.creole +++ b/input/howto/backup.creole @@ -1,6 +1,6 @@ = Debian backup = -bartok.debian.org alias backup.debian.org is Debian's backup machine. +beethoven.debian.org alias backup.debian.org is Debian's backup machine. == Backup organisation == @@ -41,41 +41,13 @@ Directories: * install da-backup on the client * create a crontab that runs da-backup daily at some convenient time * configure the directories in {{{/etc/da-backup}}} -* create a new SSH key pair for each configuration file foo in - {{{/etc/da-backup/}}} with {{{ssh-keygen -t rsa -f /root/.ssh/da_foo"}}}: - -{{{ - cd /etc/da-backup && - [ -r /root/.ssh ] && - for i in *; do - echo $i && - if [ -e "/root/.ssh/da_$i" ]; then continue; fi && - sudo ssh-keygen -t rsa -f /root/.ssh/da_$i -N '' -C "da-backup for $i on `hostname -f`"; - done - - echo "#" && - echo "# `hostname -f`" && - echo "#" && - myip=`host $(hostname -f) | \ - grep has\ address | \ - sed -e 's/.*address //'` && - cd /etc/da-backup && - for i in *; do - echo "command=\"rsync --server -vlHogDtprz --delete --delete-after --ignore-errors . /org/backup.debian.org/staging/`hostname -f`/$i\",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,from=\"::ffff:$myip,$myip\" `cat /root/.ssh/da_$i.pub`" - done && echo -}}} - -* (why is this here? It shouldn't be necessary, --weasel) ((run {{{ssh -o 'StrictHostKeyChecking no' backup.debian.org}}} and abort))) -* install the public components of the key with the proper command in - {{{/root/.ssh/authorized_keys}}} on bartok, start a new section for each host. * configure how many copies of the directory should be kept in - {{{/etc/da-backup-manager/}}} -* mkdir the target directories (at least the first level dir is required. the last directory in the path rsync will create itself). + beethoven's {{{/etc/da-backup-manager/}}} * run {{{da-backup -v}}} on the client to see if it all works. -* Backup items should either be called {{{/}}} or - {{{services/}}}, i.e. always use a two-level directory layout. +* Backup items should be called {{{/}}}. + Historically we also used {{{services/}}}. == Consistency checks ==