stash icon indicating copy to clipboard operation
stash copied to clipboard

Published 20 hours ago • verified publisher icon stashed

Pull mode or remote backup

Open micheelengronne opened this issue 5 years ago • 2 comments

As far as I understand there is no implementation of a system to take backups from a remote kubernetes cluster and pull its content back to a local Swift or S3 compatible.

Am I wrong ?

To do backups in that way increases the security as the kubernetes cluster that is backed up has no access to the backups themselves. It is a safeguard against compromised kubernetes clusters (one of the usecases of a backup). It can help to prevent the VFEmail crisis

micheelengronne avatar Nov 21 '19 09:11 micheelengronne

Am I wrong ?

That's true. We currently don't have this feature.

Btw, I have few questions regarding this FR.

  1. Where Stash will run? In your local machine or in a separate Kubernetes cluster?
  2. How schedule backup should work? Where the cron should run?

hossainemruz avatar Nov 21 '19 10:11 hossainemruz

From my POV:

  1. I would say both to widen the usecases.
  2. The cron should run in the separate Kubernetes cluster (as a kube CronJob ?) or locally to avoid the possibility that the hacker removes it in the compromised cluster.

micheelengronne avatar Nov 21 '19 10:11 micheelengronne