qubes-issues icon indicating copy to clipboard operation
qubes-issues copied to clipboard

Published 20 hours ago verified publisher icon QubesOS

Include all relevant user-created and user-customizable dom0 files in backups

Open rootkovska opened this issue 9 years ago • 7 comments

Examples:

  • [x] net topology
  • [ ] qrexec policies
  • [x] ~~guid.conf~~ (no longer user-customizable)
  • [ ] Possibly /etc/qubes or other files inside of it (which includes the aforementioned qrexec policies) (#5608)
  • [ ] Salt states (#7679)

rootkovska avatar Jan 15 '16 15:01 rootkovska

Net topology is already included (if not, please give concrete example). Others - yes, should be.

marmarek avatar Jan 15 '16 16:01 marmarek

Might be nice also to include:

  • /etc/default/grub
  • /etc/crontab
  • /etc/crypttab
  • /etc/fstab

andrewdavidwong avatar Jan 16 '16 00:01 andrewdavidwong

@axon-qubes I'm not sure about those files - those are highly specific to particular installation, if you restore the backup on fresh installation, replacing those files most likely will break the system (at least because of different UUIDs) Maybe /etc/crontab worth including.

marmarek avatar Jan 16 '16 00:01 marmarek

Right, I was mainly thinking to include them in the backup but not automatically restore. But you make a good point. Perhaps it's better to leave it up to users to cp them to dom0's home before backing up.

andrewdavidwong avatar Jan 16 '16 00:01 andrewdavidwong

Maybe /etc/crontab worth including.

Actually, I just checked, and my /etc/crontab has no entries, even though I have entries which show up when I do crontab -l (and they are working). So, backing up /etc/crontab would not be very useful (at least in my case).

andrewdavidwong avatar Jan 16 '16 01:01 andrewdavidwong

Since this is marked as a duplicate of the feature request I raised, I'd like to propose that backup of dom0 should include:

  • /etc/qubes
  • /etc/qubes-rpc

and that these files should be restored to ~/restore/etc/qubes and ~/restore/etc/qubes-rpc respectively. Later maybe other files from dom0 could be included by default or a preference setting to do so could be implemented.

I would also appreciate others' input as to what documentation should accompany this. In particular, do we expect that a user can copy ~/restore/etc/qubes and ~/restore/etc/qubes-rpc into a new install's /etc/qubes and /etc/qubes-rpc without issues? Is that true only for the same release or also across point releases (e.g. R4.0 -> R4.1).

I would like to implement this and provide some pull requests, and it seems like consensus on the solution will make them more likely to be accepted.

marmot1791 avatar Jan 30 '20 18:01 marmot1791

Generalizing this issue to reflect developments in Qubes OS since it was first opened.

andrewdavidwong avatar Aug 07 '22 18:08 andrewdavidwong