Just putting together some links for now:

• www.bit-integrity.com/…nd.html Some good basic suggestions

• Modify /etc/fuse.conf to uncomment the line: user_allow_other
• Add the user to the fuse group:

adduser $USER fuse

• relogin to get access

1. Connecting interactively:

sshfs -o allow_other,umask=117,uid=1002,gid=1002 myname@sv:/home/common /home/myname/common

2. Connecting through fstab
   • Note that it is best to connect on demand in case the network is not up when fstab runs originally

myname@sv:/home/common  /home/myname/common fuse.sshfs users,_netdev,noauto,x-systemd.automount,reconnect,allow_other,workaround=rename,umask=117,uid=1002,gid=1002 0 0

• Need to reboot system to get mountpoints activated
• Can place a mount script in ./kde/Autostart

The bug is filed here: bugs.launchpad.net/…ug/1244338

and here: bugzilla.gnome.org/…ow_bug.cgi

but if you can’t wait for the fix to come down from upstream, you can simply run this code as root:

Some resources for setting up backups:

Comparisons

• wiki documented utilities list: help.ubuntu.com/…

Duplicity

• Create secure remote backups using Duplicity – Tutorial: www.linuxuser.co.uk/…
• Duplicity Backup Howto: help.ubuntu.com/…
• Review: The Duplicity Backup System: everythingsysadmin.com/…

Rsync

• Full System Backup with rsync: wiki.archlinux.org/…

www.cyberciti.biz/hardware/howto-linux-hard-disk-encryption-with-luks-cryptsetup-command/ good how-to

• Manually mounting (will be asked for pass phrase

cryptsetup luksOpen /dev/xvdo syncfs
mount /dev/mapper/syncfs /syncfs

www.linux.org/threads/rhel6-volume-encryption-using-luks.4219/ how to handly re-boot

dd if=/dev/random of=/root/syncfs.k bs=32 count=1
cryptsetup luksAddKey /dev/xvdo /root/syncfs.k
echo "syncfs /dev/xvdo /root/syncfs.k" > /etc/crypttab

• Then add a line in /etc/fstab like:

/dev/mapper/syncfs /syncfs      ext4    defaults

The goal is to sync a common directory structure over multiple sites.

Permissions on server

• create sync user:

useradd -g office -d /home/common -c "btsync service" -m btsync

• Don’t use a sticky bit, or sync will not be able to delete files
• Make sure all contributors to /home/common have primary group office and umask=002
  • This will mean that they all have read/write access to the common files
• Recommended to use the SGID bit to lock all new files with group office and prevent this changing

chgrp -R office /home/common
chmod g+s /home/common #just to top directory (assume no sub-directories)
chmod -R g+w /home/common

• Note that if a user creates a new file, when btsync replicates it on other systems it will lose ownership information (and be owned by btsync). But because it will have group office it will be editable.

First time setup

There is an excellent article here: www.makeuseof.com/…n-machines/

• Create package list: dpkg --get-selections > ~/packagelist.txt
• Mark packages for reinstallation on new system dpkg --set-selections < ~/packagelist.txt
  • This will mark all packages, but it won’t install them until you run:
• apt-get -u dselect-upgrade

• Cool bash history tips: meandubuntu.wordpress.com/…ps/
• Useful website of Linux/Unix example commands: www.tgunkel.de/…_linux_unix.en
• www.terminally-incoherent.com/… Great bash tips!
• To increase bash history, add HISTSIZE=5000 to your .bashrc file.

Many GTK based apps failed with errors like:

Gtk-WARNING **: Error loading icon: Couldn't recognize the image file format for file '/usr/share/icons/oxygen/16x16/actions/application-exit.png'

until I ran this line to regenerate the cache:

gdk-pixbuf-query-loaders > /usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders.cache