What's a good way to supply a password for automating a backup?

unix backup

Solution 1:

  1. Don't roll your own backup solution.
    Seriously. Don't. You'll mess it up. There are plenty of great backup systems for Unix, and plenty of free ones, and plenty that are both.
    -Bacula (Free and good)
    -TarSnap (cheap and good)

  2. If you HAVE to do this, do it with passwordless SSH keys, and use forced commands to secure the target accounts. See the SSH man pages (ssh ; sshd - specifically re: authorized_keys) for more details.
    Implementation of the script (tar locally, rsync, etc.) would depend on your environment and needs -- do what makes sense.

Solution 2:

What part of the backup do you think requires a password? If you're talking about shipping the tarball to another server via ssh, then you should look at making an RSA key pair. It will allow a secure passwordless connection from one machine to another. You shouldn't be storing passwords in plaintext in any script.

Related

Deleted Domain System Volume. How do I recreate it; I have no backups
Removing DNSSEC - Can it be done, and how can I?
can you help me setup DNS forwarding
Memcached with SASL: Couldn't find mech PLAIN
Why are pods failing to schedule due to resources when node has plenty available?
incoming email is rejected
ansible error: Failed to find required executable rsync in paths: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin:/sbin"}
Do I need SiteLock on top of AWS Shield? [closed]
Access windows EBS Volume from EC2 linux as folder
Connection Failed on AWS Client VPN - netsh command failed: external program did not execute -- returned error code -1
Increase the size of software RAID 10
Where is the System maintenance switch on HP ProLiant dl360 Gen 7