[PVE-User] Security Proxmox Backup Server

[PVE-User] Security Proxmox Backup Server

[Jean-Laurent Ivars]

Hello everyone,

To give you a bit of context I’m pretty comfortable with PVE that I use for years and enjoy so much for everything it can do, it’s simplicity while being so full of possibilities and it’s stability.
Until today I never had installed a PBS and now I’ve done it but I haven’t spent so much time on the configuration nor on learning how to use it yet, even though it seems very promising !

Having searched the perfect solution for backup my PVE clusters and VMs for years it seems it’s finally getting there and so now Proxmox is (finally) a real solution that miss absolutely nothing to be production ready, though I have a question : I’ve seen in the doc many times that it’s not a problem if the PBS is not fully trusted because it’s possible to activate encryption on the client side but what if it’s the client, VM or the PVE cluster that becomes untrustworthy ? Let’s say my cluster get hacked !
Is there a way it compromises the backups ?

Sorry if my question seems obvious but it would save me a lot of time because if that wasn’t the case (which wouldn’t make sense so I doubt it) it would be a no go for me, so I wouldn’t lose my time learning more about it, even though it seems a great deal with all these options and fonctions !

Thank you for having took the time to read me and don’t hesitate to send me some links ;) 
Thank you so much in advance !

Best Regards, 
Jeanlau

Re: [PVE-User] Security Proxmox Backup Server

[Jean-Laurent Ivars]

Thank you for your quick answers and advices, I’ll do more research and give restricted access…
The tape backups are not an option as the budget is limited and the datacenter doesn’t propose that option with this server.
Concerning the another physical location it’s already the purpose of the backup server as I already have backups on other disks on the local PVE and also on a network share on a different physical location but directly mounted (and accessible with no protection) on the PVE server so for the whole point of this backup server is to already get a different physical location and since it’s a pretty basic and simple system I could as well setup a rsync script that would retrieve the backups files already managed by the PVE itself on then backup server…
But apparently the creation of a limited account gives me the same kind of security with all the advantages of deduplication, limited bandwidth, scalability of retention etc… so I think I’ll go that way 😉
Thanks again for sharing

Best Regards, 


> Le 27 mars 2022 à 01:59, Dietmar Maurer <dietmar@proxmox.com> a écrit :
> 
> 
>> 
>> Let’s say my cluster get hacked !
>> Is there a way it compromises the backups ?
> 
> First, you can use the PBS access control system to limit access...
> 
> A reasonable setup would also:
> 
> 1.) sync the backups to another physical location
> 2.) make tape backups an store the tape offsite
> 

Re: [PVE-User] Security Proxmox Backup Server

[Dietmar Maurer]

> Let’s say my cluster get hacked !
> Is there a way it compromises the backups ?

First, you can use the PBS access control system to limit access...

A reasonable setup would also:

1.) sync the backups to another physical location
2.) make tape backups an store the tape offsite