Password in backup

Meister · April 4, 2020, 7:30am

Hello,
First of all I would like to thank you for the great work.

I have three questions.

is it possible to enter a password in the backup so that the file is secured?
what is the root password of the root mysql user and how can you change it?
why is the latest version of Apache not used? The version that comes with the distribution standard is always used.

best regards

Raphael · April 4, 2020, 7:44am

Hi

Currently not, no.

Check $HESTIA/conf/mysql.conf, you can change the password and update the conf file (probaly also in /root/.my.cnf).

That’s a good question, will discuss with the team to probaly implement sury’s repository for apache2, infact we have already the php one.

Felix · April 6, 2020, 1:03pm

Good point about password protecting backup files
I think it’s absolutely essential when the files are offloaded to a remote location.

changeme · April 6, 2020, 8:16pm

A tar file can’t be password protected. Neither the tar format nor the gz format has built-in support for password-protecting files

But you can use this in your script before pull/push from/to remote location

zip -P "$password" $DES/$PATH/$file.zip /backup/$SOURCE_FILE.tar

and unzip $SOURCE_FILE.tar.zip will ask you for password before decompress

Maybe not best deal, but It works

Meister · April 18, 2020, 12:06am

Can you please put that in later?

When will you discuss it?

Raphael · April 18, 2020, 3:03am

As @changeme already specified, tar doesnt support any encryption - currently there is no plan to implement it.

Already done, we will do a test branch and check if it works properly, then do further decissions.

Raphael · April 19, 2020, 7:30am

The test branch has uploaded to github, we would love if you could have a look and give us a feedback if it works properly: https://github.com/hestiacp/hestiacp/tree/core-sury-apache2

How to test and install custom builds: GitHub - hestiacp/hestiacp: Hestia Control Panel | A lightweight and powerful control panel for the modern web.

martineliascz · April 30, 2020, 10:13am

I can recommend Duplicati here. Daily backup to Google Drive w/ GPG protection.

Features:

GUI
Cloud support
Encryption (AES/GPG)

Felix · April 30, 2020, 10:48am

Duplicati is endeed a gem. I use it elsewhere but not for VPS buckup (just yet).

Meister · May 2, 2020, 9:17pm

Unfortunately I don’t have a free server to test it on at the moment, but I hope you get feedback from others.

Meister · May 15, 2020, 11:42pm

i have reinstalled hestiacp on ubuntu 18.04 but .my.cnf is no longer available. where is the root data now? was the file moved?

eris · May 16, 2020, 5:22am

Use the command locate

root@cp:~# locate my.cnf

It wil show you the right directions

root@cp:~# locate my.cnf
/etc/mysql/my.cnf
/etc/systemd/system/mariadb.service.d/migrated-from-my.cnf-settings.conf
/root/.my.cnf

The Branch core-sury-apache2 branch has been merged with the master branch.

Raphael · May 16, 2020, 6:18am

A reinstallation is nearly never a good idea, why you did it? @eris is right with locate, also there is a folder in /root called hst_installer_backup (or similar, just on mobile here), which contains all backups from the installer script.

Meister · May 16, 2020, 8:20am

i have a new server and had to reinstall it. the command locate my.cnf gave no response but i found it now under /usr/local/hestia/conf. on the test server it is in /root.

funny that this has changed :).