HowtoForge - Linux Howtos in English English|HowtoForge.de - Linux-Howtos auf Deutsch Deutsch

Use SSHFS With rdiff-backup.

Submitted by stefbon (Contact Author) (Forums) on Fri, 2007-08-24 15:08. :: Backup

Use SSHFS With rdiff-backup

An excellent tool to create backups is rdiff-backup. It is based on SSH, and the feature of SSH to execute a command on a remote system, as long as you can log in to this machine with SSH.

Now I've been experimenting with SSHFS, and one of the things it can be used for is rdiff-Backup. Sshfs is a FUSE module, which allows you to mount the remote system. A normal backup looks like (assuming ssh access is ok):

rdiff-backup --preserve-numerical-ids 192.168.0.10::/home/sbon /srv/rdiff/backup/192.168.0.10/home/sbon

Now with SSHFS it looks like:

install --directory /srv/rdiff/mounts/192.168.0.10
sshfs -o ro 192.168.0.10:/ /srv/rdiff/mounts/192.168.0.10
rdiff-backup --preserve-numerical-ids /srv/rdiff/mounts/192.168.0.10/home/sbon /srv/rdiff/backup/192.168.0.10/home/sbon

It looks like this construction has only advantages:

- the backup process is slightly faster. I've done some testing and all of my cases the backup over sshfs was a little bit faster (5 a 10 %).
- with sshfs it is possible to mount the remote system read-only, which increases the security. This is not an optimal security measurement: this readonly flag should not be controlled on this system (where the backup is made) , but on the remote system. I've tried to find out how, but there is no way in the Ssh server to make access read-only. Somebody knowing a way to do it, please let me know.
- it is possible to make more than one backup using only one SSHFS mount. When all backups are done, the sshfs connection with the remote system can be caunmounted.
- there is no need for rdiff-backup to be installed on the remote system.

One possible disadvantage (I'm not sure yet) is that sshfs does not support extended attributes. At this moment [26 august 2007] I'm trying to find out for sure.
September 2007:
I've send an email about this to Miklos Szeredi, the writer of SSHFS. SSHFS lacks support of ACL's because the sftp-server in OpenSSH doesn't support it. According to M. Szeredi "the OpenSSH developers have been reluctant to add support for newer protocol versions".

Links:

SSHFS: http://fuse.sourceforge.net/sshfs.html
rdiff-backup: http://www.nongnu.org/rdiff-backup


Copyright © 2007 Stef Bon
All Rights Reserved.
login or register to post comments | Email this page to a friend email this page | view as pdf view as pdf | Display a printer-friendly version of this page. printer-friendly version

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Please do not use the comment function to ask for help! If you need help, please use our forum: http://www.howtoforge.com/forums
Comments will be published after administrator approval.
SSHFS install issue on Debian
Submitted by andmalc (Contact Author) (Forums) on Wed, 2007-09-05 00:21.

Thanks for this article on rdiff-backup and sshfs.  I'm already a fan of both but hadn't thought of using them together.

A note on installing sshfs on Debian (and maybe other distrols) that isn't mentioned in the docs or on the program's FAQ.  Your user account must be a member of the fuse group or you'll get

fusermount: failed to open /dev/fuse: Permission denied

So, do:

sudo adduser <username> fuse

newgrp fuse

sudo adduser <username> fuse

newgrp fuse

login or register to post comments | Email this page to a friend email this page | view as pdf view as pdf
Permissions on /dev/fuse.
Submitted by stefbon (Contact Author) (Forums) on Thu, 2007-09-06 20:34.

Hello,

 you're right about this. The user using sshfs must have enough permissions to write and to read /dev/fuse. There are various ways do that, you name one. Another is to change  the permissions of /dev/fuse:

crw-rw-rw- /dev/fuse

I prefer the latest, fuse is meant to be used by anyone. But that's my opinion. Anyway thanks for your comment,

 

Stef Bon

the Netherlands 

login or register to post comments | Email this page to a friend email this page | view as pdf view as pdf