On Wed, Sep 29, 2021 at 4:27 AM Peter Humphrey <pe...@prh.myzen.co.uk> wrote: > > Thanks Laurence. I've looked at borg before, wondering whether I needed a > more sophisticated tool than just tar, but it looked like too much work for > little gain. I didn't know about duplicity, but I'm used to my weekly routine > and it seems reliable, so I'll stick with it pro tem. I've been keeping a > daily KMail archive since the bad old days, and five weekly backups of the > whole system, together with 12 monthly backups and, recently an annual > backup. That last may be overkill, I dare say.
I think Restic might be gaining some ground on duplicity. I use duplicity and it is fine, so I haven't had much need to look at anything else. Big advantages of duplicity over tar are: 1. It will do all the compression/encryption/etc stuff for you - all controlled via options. 2. It uses librsync, which means if one byte in the middle of a 10GB file changes, you end up with a few bytes in your archive and not 10GB (pre-compression). 3. It has a ton of cloud/remote backends, so it is real easy to store the data on AWS/Google/whatever. When operating this way it can keep local copies of the metadata, and if for some reason those are lost it can just pull that only down from the cloud to resync without a huge bill. 4. It can do all the backup rotation logic (fulls, incrementals, retention, etc). 5. It can prefix files so that on something like AWS you can have the big data archive files go to glacier (cheap to store, expensive to restore), and the small metadata stays in a data class that is cheap to access. 6. By default local metadata is kept unencrypted, and anything on the cloud is encrypted. This means that you can just keep a public key in your keyring for completely unattended backups, without fear of access to the private key. Obviously if you need to restore your metadata from the cloud you'll need the private key for that. If you like the more tar-like process another tool you might want to look at is dar. It basically is a near-drop-in replacement for tar but it stores indexes at the end of every file, which means that you can view archive contents/etc or restore individual files without scanning the whole archive. tar was really designed for tape where random access is not possible. -- Rich