- Joined
- Apr 16, 2020
- Messages
- 2,947
I have 2 TN Core boxes and have a working snapshot replication between them - that just works. Setting up the SSH connection was easy as I know root on both sides (its the same, which is certainly bad practise). However I want to achieve somthing a bit different and I am running smack into my lack of knowledge.
Myself and a friend both have a TN Core box running. We also have a VPN running between sites. We both want to send a dataset to each other via snapshot replication so we have an offsite backup of important data. We could use rsync from the GUI - which works, but that won't create a generational copy (in and off itself). I realise we could just use rsync and then snapshot at the receiving end which would provide the same result. This may be the solution and I can see some advantages to this.
We could setup SSH pairs using root, but as a point of general principle we don't want to do that. Anyone got any advice as to how we should go about this without giving each other root access / more permissions than we want to. Its not a matter of trust between us, its a matter of wanting to do this properly, which makes it a matter of trust and an opportunity to learn.
Actually, after consideration, rsync is not the right way if you add encrypted datasets into the equation. As the purpose is to backup offsite important familly documents then they should be encrypted. Replication is good as that replicates the encryption. Rsync would bypass that
Myself and a friend both have a TN Core box running. We also have a VPN running between sites. We both want to send a dataset to each other via snapshot replication so we have an offsite backup of important data. We could use rsync from the GUI - which works, but that won't create a generational copy (in and off itself). I realise we could just use rsync and then snapshot at the receiving end which would provide the same result. This may be the solution and I can see some advantages to this.
We could setup SSH pairs using root, but as a point of general principle we don't want to do that. Anyone got any advice as to how we should go about this without giving each other root access / more permissions than we want to. Its not a matter of trust between us, its a matter of wanting to do this properly, which makes it a matter of trust and an opportunity to learn.
Actually, after consideration, rsync is not the right way if you add encrypted datasets into the equation. As the purpose is to backup offsite important familly documents then they should be encrypted. Replication is good as that replicates the encryption. Rsync would bypass that
Last edited:
