It is the "world #backup day", at least according to WorldBackupDay.com. I like the idea of having such a day, to serve as another nudge and a reminder to make and check backups, though WorldBackupDay.com is awkward, does not mention rsync in its software section. The "com" TLD looks suspicious, too, but it is better than nothing (except for potential private data leaks with online backup services).
I use primarily encrypted external HDDs (#ZFS or #LUKS with #ext4) and #rsync for personal backups, including rsync with "--dry-run --checksum" for scrubbing and checking before synchronization; quite happy that such tools are available, even though they are usually taken for granted, as are many other neat FLOSS tools we use regularly. Planning to add a USB stick to the list of storage devices, since it should be less fragile mechanically (even though less reliable otherwise).
@defanor GIven that my usual restoration use case is "I want that specific file/directory back", I'll particularly applaud backups that output as readable filesystems. It'll take a bit longer if I ever want to reset my entire machine to last Tuesday but it's much more useful until then.
@atzanteol All's good. Yea, reason for the post was that even though I took the partitions offline it wouldn't still let me resize. So I think the best next move would be just booting into a USB and see if it lets me.
The whole disk well, only the boot is separated. The rest of the partition has the whole space controlled by LVM. Interestingly even though that may be the setup something was just rejecting my resize request.
Sadly have more to say but Mastodon limit is hitting haha. nutshell
do you have a handy #usb or #sdcard you usually travel with? they are small, light, cheap... convenient.
it's not that you store there Top Secrets (maybe!) but in case it was lost or stolen you will feel more relaxed if the drive was securely encrypted. LUKS
#LUKS implements a platform-independent standard on-disk format for use in various tools. This facilitates compatibility and interoperability among different programs and operating systems[...]
I was to write a blogpost about it, but there are plenty of them available to use LUKS encryption in any platform. Just three here:
and How to backup or restore LUKS header by @milosz ⚠️ Do this just after creating your encrypted drive and save the header in another (safe) storage. Use a password manager to create/store safe pass-phrasses (recomended for usb-luks as you most likely will have to hand write it) and passwords.
My usb-luks are automatically detected and mounted (after pass-phrase prompt) in both #archlinux :archLinux: and #debian :debian: 🥳
After more thinking related to my previous post (https://is-a.cat/@madargon/111845765590354051) I decided to add some kind of dead man's switch to my main laptop (to ensure disk #encryption would fully protect it in case of emergency). I read it could be possible to configure systemd-logind to shut down my computer automatically after long inactivity. So I tried to do it and now I have laptop shutting down in random moments, mostly after I open its lid after being long closed when turned on (as I understand it makes it suspended and systemd-logind doesn't work then), use it and then leave idle for 20-30 mins. And my goal was shutting it down after full 10+ h inactivity :blobfoxfacepalm:
I am not sure WHAT I am doing wrong :blobcatfearful2:
@xgqt it is much faster on "gaming" models. Very easy to achieve accidentally e.g. unplugging during room cleaning and not long time after laptop randomly shuts down :blobCat_happy:
@krevedkokun shared a cool thread about uki-bootloader implementation for guix, which brings alternative to grub and better encrypted root support. The solution has some drawbacks, but still very nice to see this work done!
@graywolf@krevedkokun Haha, it's funny, a couple weeks ago we with @dgr were discussing 65002 patch series and planned to make a test qemu image to verify if it works.
Ok I'm interested to find out how many of you #Linux laptop users that use an encrypted root partition of some description actually use hibernate aka suspend to disk ?
Feel free to leave your reasons for using or not below.
After a request on the #selfhosted community on Lemmy, I wrote up how I use LUKS, Clevis, and Tang to give me network-bound encryption. This means that I can restart my servers as long as they're on my home network without worrying about having to log in to decrypt the drive, but if someone breaks in and steals my servers and turns them on anywhere else, the data on them is safe. https://i.am.eddmil.es/clevistang/
So I'm rebuilding my main home dev system. I want everything except /𝚋𝚘𝚘𝚝 and 𝚜𝚠𝚊𝚙 to be #LUKS encrypted and #RAID1 mirrored. I'm not really interested in getting #LVM into the mix; I don't see any added value. So what's the best path? Boot from a dist #disc and set up #MD RAID1 sets, and then install onto them? Or what?
I've typically used #Fedora, but keeping current/upgrading has always been iffy or a pain. Maybe I should use #Ubuntu? #Debian users scared ne off years ago..
Any opinion on a stable #Linux OS? #Fedora needs updating too frequently, and last I looked it didn't favour update-in-place, recommending complete new installs instead. Which is cool for cloud instances, but less so for home-grown organically-built personal home servers.. #Ubuntu maybe?