this post was submitted on 03 Dec 2023
229 points (98.7% liked)

Selfhosted

40084 readers
1289 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Recently I have decided that the backup solution I have been using is far too complex for my family to figure out when I die. I began writing documentation on how they can access photos, videos, documents and so on. In that process I thought, I gotta make this simple.

I’m thinking of just having two 10TB drives in RAID 1 on my desktop that get backed up to Backblaze via restic. Backblaze and similar cloud storage providers can send you a copy of your data for recovery. I think I can sufficiently document this process.

Has anyone else come up with a similar process?

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 90 points 11 months ago (2 children)
[–] [email protected] 30 points 11 months ago

I just read that README, quite sobering. Now I'm thinking of bus scenario backup plans. Like, there's stuff that is eventually gonna stop working if left unattended too long, and you just assume you're gonna be around to maintain it, you know?

[–] [email protected] 25 points 11 months ago

This is really good, I just realized I read it a while back, and it prompted me and and a technically competent friend to at the very least be each other's bitwarden "killswitch" users - forget what it's called, the person that can take over your vault if you are dead/disappear, it is configurable in different ways, like if they request access and you don't respond by X days, they get it. We don't have the same skill set, but are both competent enough to figure it out or find someone that can access everything needed if given all the credentials stored there. I should do more and document, but this is a first good step if shit hits the fan

[–] [email protected] 29 points 11 months ago (2 children)

From a security perspective, it isn’t ideal, but a simple unencrypted external drive might be the best solution.

load more comments (2 replies)
[–] [email protected] 22 points 11 months ago (1 children)

I run a lot of tech, containerized workloads in AWS, home firewalls running on protectli boxes for all my family around the country, wireless controllers to run APs for my family around the country, but as I got older one thing I stopped rolling my own instance of was data backups. My data backs up to OneDrive and iDrive, so two copies of my data. My wife has access to both via shared credentials in a 1password folder that she knows how to access and uses regularly.

As I got older and I had a family, the pictures of our kids, wills, financial records, insurance documents are all just too important. Every service that holds my data is paid annually for less than $200/year total and auto renews. She could call either company and prove ownership if she ever did need help getting access. Also, I can easily share folders to her.

It's funny how getting older makes you think of the sorts of issues enterprise teams have. Don't implement solutions where you will be one deep, have a succession plan, and complexity is the enemy. All the tech I run now is fun and helpful, but can be replaced with a trip to BestBuy. The data and pictures however must be easy to retrieve for her.

So I don't have a good self hosted solution for you other than to say that at some point it's ok to change your strategy. And if you are worried about privacy, you can encrypt subsets of your data locally before it is backed up.

load more comments (1 replies)
[–] [email protected] 20 points 11 months ago (3 children)

All of our data is backed up 2N+C - two NASes and an encrypted rclone in S3. This includes family videos, photos, and all "paper" records (Paperless-ngx for the win).

I've documented my homelab in Joplin, and stored all my homelab passwords (and Bitwarden password) in a Keypass database. Those files are stored on a USB stick in our household safe, along with a printed letter instructing my wife to pass everything on to one of my brothers.

The first half of my homelab manual details how to return our smart home to un-smart. The second half contains detailed technical data on how my entire home network hangs together.

I'm currently thinking about some sort of dead man's switch, where copies of the letter and files from the USB stick are auto-emailed to my wife and both my brothers in the event I don't check in for a period of time - say two weeks or so. That way, should the house burn down with only me in it, my wife will still be able to get to all of our records and memories.

[–] [email protected] 3 points 11 months ago

This is on par with what i do with the addition of two external hard drives. One with my stuff (server+personal) and one when her stuff (personal). I can recover shit in multiple ways and if she needs to she just grabs the external and plugs it into a laptop.

[–] [email protected] 1 points 11 months ago (1 children)

This is fantastic, especially the dead man’s switch part.

[–] [email protected] 1 points 11 months ago

Yeah, still pondering that. I need to be able to trust it implicitly to not send everything accidentally. The alternative is that I leave a USB stick with each of my brothers as well, and only send the instructions using the dead man's switch.

The problem there is keeping the data on the USB sticks current. And making sure they don't misplace it themselves.

Like I said, I'm still working out the kinks in my plan.

load more comments (1 replies)
[–] [email protected] 19 points 11 months ago (1 children)

I don’t self host to the extent many here seem too but I have had the same thought and joked with my wife about it.

Ultimately everything I’ve setup I’ve done in part because it’s my hobby and it interests me. When I’m gone my family will revert to whatever they’d normally be doing without me, because they don’t have interest in it like I do.

[–] [email protected] 6 points 11 months ago* (last edited 11 months ago) (1 children)

While that's true, op has rightly raised the issue of photos, videos and documents meaning things that were created by them and uniquely meaningful to the family. If those only exist within the self hosting Rube Goldberg machine, they're not coming back out without careful documentation.

I would also add anything created by me, so art, my personal writing and drafts, software I haven't released yet, and so on.

[–] [email protected] 3 points 11 months ago

I totally agree and understand the use case. That plays into that more in depth type of self hosting most here do. All I have is storage via Synology, and Pi-hole, smart home controls and a media server in separate containers.

My use case is strictly QoL improvements that my wife would either just live without or switch to a more conventional, easy to use setup for her.

[–] [email protected] 19 points 11 months ago (2 children)

this is a great untapped business idea. people need an idiot proof but safe and yet a succession/trust plan. i struggle with phone backups too.

[–] [email protected] 8 points 11 months ago* (last edited 11 months ago)

this is a great untapped business idea.

But why are there advertisements in my backups now?

[–] [email protected] 5 points 11 months ago (1 children)

My backup solution is hard to setup and maintain, but shouldn't be terrible for someone else to recover from.

All the phones sync to nextcloud when on wifi and charging. My server has alternating encrypted backups, and one is always off-site.

If I go, my wife can plug it in and punch in the password. Hopefully that's enough.

[–] [email protected] 2 points 11 months ago (1 children)

Please don't think I'm disparaging your wife here but in my experience saying "they should just be able to ...." Has never been followed by the intended person "just being able to....". Even people I thought were very intelligent/tech savvy. It may be worthwhile to run through the procedure with her a few times if shes not already familiar with it.

load more comments (1 replies)
[–] [email protected] 12 points 11 months ago (3 children)

Can't imagine any perceivable value of my media for family members, even if they could figure out how to use it.
Since my desktop isn't running Windows I'm not sure my sister could just start using it instead of my old rig I gave her.

How long do SSDs last in a time capsule?

[–] [email protected] 5 points 11 months ago

There are tape drives that are certified to last for a very long time and are as easy as USB plug ins. Looks like a brick and is as heavy as one. Very low speed but you can pack a lot of data for a very long time in one.

[–] [email protected] 4 points 11 months ago

Enterprise SSDs are certified to retain data without power for 3 months. That's extremely conservative - but I wouldn't push it to more than about two years.

[–] [email protected] 2 points 11 months ago

You might be surprised how much attention family will put into your media, especially any pictures, movies, or audio that you created, when you're gone. It's a way to commune with their memory of you. My family still regularly trots out boxes of physical photographs of grandparents' grandparents & homes no one has visited in 70 years.

[–] [email protected] 8 points 11 months ago (1 children)

Honestly, maybe having it also backup to a consumer grade external HDD enclosure. As much as it pains to say. But like one of those WD mybook things or similar. Designed to be dead simple for the average person.

[–] [email protected] 1 points 11 months ago

Be careful depending on the model, some of those run hot. I managed to kill one in under 2 weeks just by copying a large amount of data to it and had to print a fan shroud for it's replacement to keep the temps at a reasonable level.

[–] [email protected] 8 points 11 months ago (4 children)

Every couple months when I do server patching I run a script that downloads our immich library, paperless documents and bitwarden backups to an external hard drive. Then I put the drive in my gun safe. She knows where it is. After that she is on her own. Everything else isn't important and she will be just fine.

load more comments (4 replies)
[–] [email protected] 8 points 11 months ago

You know how you need to test any backup solution? This is the same. Have anyone that you're expecting to do this run through the process entirely from your documentation. If they can't, adjust the doc/process until they can. Then include that with your will, or with other documents people will be looking through in the event of your death.

[–] [email protected] 8 points 11 months ago (3 children)

Slight tangent, but I recently cleaned out the house of a parent after they passed away. There were boxes and boxes of family photo albums. We kept them for a while out of guilt, but we really didn't know anyone in the photos aside from one or two people. Eventually we got rid of them. Point being the value of your stuff is probably far less to others then it is to you, especially photos to future generations.

[–] [email protected] 11 points 11 months ago

Label those pictures though, they are more useful. When my grandma died we showed her old photos to a man who looked at one and said, that is my mom, I never saw a.picture of mom before she was married before. However if my grandma hadn't labeled the pictures it would be some girl nobody knew 70 years later '

[–] [email protected] 2 points 11 months ago

This is a nice theory, but remember people don't always die in order. If you pass away before your parents, they will almost certainly appreciate your photos. If you die before your spouse, they will need access to documents and will appreciate photos as well.

In a "hit by a bus" scenario, you don't get a chance to migrate things away from your self-hosted solution, and those you leave behind most likely are not exclusively "future gemerations".

load more comments (1 replies)
[–] [email protected] 7 points 11 months ago* (last edited 11 months ago)

Besides the technical stuff you should probably write that ownership transfers to your spouse and kids into your will. Maybe even write part of your backblaze or even password manager password into the will and the other part in a safety deposit box.

Much easier and quicker for your family to gain access if they have the password than if they have to proof that they are next of kin.

[–] [email protected] 5 points 11 months ago (2 children)

I want the opposite. I want all of my data to be completely inaccessible to anyone, and potentially even self-destruct somehow.

[–] [email protected] 5 points 11 months ago (1 children)

I'm sure that really depends on the data.

If we're talking about stuff like family photos, then having it retrievable feels pretty reasonable to me.

[–] [email protected] 5 points 11 months ago (2 children)

Sure, if you have family photos. Or a family that you want to have access to anything of yours. I do not. And I very specifically want to do everything in my power to prevent my so-called family from gaining access to anything of mine, digital or physical.

[–] [email protected] 5 points 11 months ago

I'm sorry you have such a shit family bro :/

[–] [email protected] 1 points 11 months ago

There's that as well. Point is, it really depends on the data.

[–] [email protected] 3 points 11 months ago

To be honest, I don't care. After all, why? I'll be dead, I won't care. You can leak it all then. Just make sure I am actually dead.

[–] [email protected] 5 points 11 months ago* (last edited 11 months ago) (1 children)

Often thought of the same thing. So leaving this comment here in case someone got a good solution that don't involve big tech.

When I get the time my plan is to read up on big techs solutions, fx Google and Apple, who as I understand can give your family access under certain conditions if your've passed.

EDIT: And replicate their solution using FOSS / self hosting.

[–] [email protected] 3 points 11 months ago

My mom just got access to my dad's iPhone/iCloud data. She had his credentials I'm sure but they sent her a link to download it all.

[–] [email protected] 5 points 11 months ago

Well, we will all miss you in the event of your death. Anyway maybe you could find a family friend that's tech savey.

[–] [email protected] 4 points 11 months ago

I have an external drive plugged into my NAS that receives a daily sync of important documents. My wife knows to take it if anything happens to me. I'll create documents that explain anything that needs explaining and make sure they're synced there.

[–] [email protected] 3 points 11 months ago* (last edited 11 months ago)

'bus disk' a unique piece of media that contains all my access credentials to be used in the event of my being hit by a bus (sudden death).

let the people that matter know where it is, if i get hit by a bus they or another IT professional ( like one of the kids) can get access.

ive always had some form of a bus disk for professional and private life. keep that shit air gapped also

[–] [email protected] 2 points 11 months ago (1 children)

I don't have a solution really, but I'm also thinking along your lines.

For files I share with my girlfriend, I have set up syncthing. So my server and our phones have a copy of the files, I like this solution. But it wouldn't work for large amounts of data.

For my server stuff, it is backed up encrypted on backblaze. so I guess that is lost. Most files are also rsynced onto a usb drive connected to a raspberry pi (not encrypted). So that should be accessible, except for a linux'y filesystem (probably ext4) that doesn't work on windows

[–] [email protected] 2 points 11 months ago (1 children)

syncthing will work with pretty large amounts of data, unless you mean having the storage space on each device is the "won't work" issue.

load more comments (1 replies)
[–] [email protected] 2 points 11 months ago* (last edited 11 months ago)

Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I've seen in this thread:

Fewer Letters More Letters
AP WiFi Access Point
NAS Network-Attached Storage
SSD Solid State Drive mass storage

3 acronyms in this thread; the most compressed thread commented on today has 13 acronyms.

[Thread #333 for this sub, first seen 3rd Dec 2023, 22:25] [FAQ] [Full list] [Contact] [Source code]

[–] [email protected] 1 points 11 months ago (3 children)

Tape drive to USB are a great solution.

load more comments (3 replies)
[–] [email protected] 1 points 11 months ago* (last edited 11 months ago)

Encrypted file with all the necessary instructions inside (sensitive passwords excluded, these should be on paper only) shared through several cloud storage platforms. Encryption key part of a separate bitwarden account with a takeover feature. Anyway, that's my setup.

[–] [email protected] 1 points 11 months ago

Just give them access to it now? There shouldn't be any issue with it continuing to be available or a while if you should get hit by a bus.

load more comments
view more: next ›