The main point is that sync (like RAID) isn’t a backup. If ransomware got in and started encrypting all your files, how would you know / protect yourself…

There’s a lot of focus on 3-2-1 backups, so offsite is good, but consider your G-F-S strategy too - as long as this remote copy isn’t your only long-term backup option, then sync might be ok for you

So, syncthing / rsync / etc is fine… but maybe just point it to your monthly / weekly / daily backup folder(s) rather than the main files?

You also had some other suggestions I think, like zfs / btrfs snapshots… which would be a point in time copy of your files.

Or burn the photos to DVD / Bluray and store them at the other location? No power requirements there…

Wake on LAN won’t work remotely, so you’d either need to have access to a VPN at their location, or have a 2nd always on device that you can connect to and that could then WoL to your device… or… get a device with an IPMI which you remote into. (All non-VPN forms of remote connection are open to abuse)

I suspect (guess) you’re not going to be able to setup a VPN, so perhaps an always on pi is going to be necessary - so maybe it’ll be that with drives set to spin down when idle?

OpenMediaVault was my preferred choice until everything went docker on it which was getting too complex for a NAS… so I just created my own, which powers on at certain times of the day and off again when CPU / network IO was low enough.

Data transfer with syncthing is great, but I don’t really recommend sync for snapshot backups… (consider your files are all corrupted, it’ll happily sync those corruptions) but I have enough space for a few versions of my files, so in theory I can roll back, but it’s cetainly not a Grandfather, Father, Son strategy.

I’ve not seen a list beyond the integrations page - which just lists everything and does not show which are certified or not.

Not sure why you’ve been down voted - I think the fossify apps are really good.

I even contribute towards their app development

Vivaldi has a CalDav Calendar built in.

If you’re open to that possibility, I’ve been using it on both Windows and Linux laptops and works well with my radicale server.

Ansible is an automation tool to setup systems to a known desirable end state.

TBH, for a single device, it’s overkill, but you seem like someone who keeps good notes and has some custom files to copy across… you could convert your setup note into an Ansible file, and it will also copy over your custom config files.

For Ansible you define the desired outcome and it does “all” (kinda) the work for you… so… say you want Apache, MariaDB and PHP, it doesn’t matter if half are installed already, or not, or their dependencies - you just say:

Do an update Install packages: A B C Copy my config files over Start the services Relax

Yep, it’ll take 10 times as long to get it working up front, but the day you want to duplicate it / start on a fresh Pi / VM, it’s all there for you.

I use it to setup all my Pi Zeros thr same way (they’re doing BLE presence detection) and for their regular updates

I’ve also got some VMs setup that way

But… I tried it on a laptop and as it’s a single device I just ended up setting it up manually and now the ansible script is woefully out of date… just some balanced feedback.

Thanks. No need for the setup notes (but thanks for the kind offer), it was more about the experience, but I think you’ve already answered my question with less surface area (I do have 1 Pi that’s internet facing for Radicale)

Have you looked at Ansible? That might also cover what you’re trying to do.

I went with Arch Linux on ARM for a minimal approach - did you try that?

Genuninely interested in your experience of Alpine Linux as I’d not considered it on a Pi (only VMs so far…)

If you’re just looking for something to chew up CPU cycles and don’t know what to host, consider something like BOINC where you’re “self-hosting” (extremely loose term) scientific research, like cancer, new drugs, etc.

If they’re sharing it with me, then sure, I’ll add it to the folder for that party, holiday, event

Immich would scan it and faces are taken care of and if there’s metadata in there, great, if not, dunno if I could be bothered to edit it… maybe date stamp if that was wildly off.

I commented elsewhere here, but E2E encryption is just between the server and the end user (ie a VPN)

You’re thinking about encryption at rest, on the storage.

Immich would have to setup a whole new design to be able to store all the metadata on a per-user basis… but… you could have multiple Immich instances if you were to host it for your friends, but I think we’re drifting into “why bother” now…

Well… E2E is still feasible, that’s your VPN for example.

Encryption at rest is where de-dupe, search, etc, can break.

I guess this is mainly targeted at Universities and organisations that mirror repos?

They’re the kinda place (I presume) that would be able to support this…

Is that the same i as the squareroot of -1?

If you’re able to, use GeoIP ranges to only allow access from the countries you want.

That immediately limits a lot of everything

Then - again if you’re able to - use a block list that covers known scrapers in case they’re in your country.

I use pfBlockerNG on my pfSense firewall for exactly this.

Take a backup and go for it.

Personally, I ditched OMV for standard Arch Linux and just added the packages I wanted…

This

x10

MythTV for the main storage, stored in folders by my genre.

All metadata updated via Picard.

Syncthing to replicate to a Raspberry Pi (2 or 3, I don’t recall which) running Volumio with a DAC board to connect speakers to.

The Pi is in the bedroom, so I only replicate the genres that I want, which cuts down on storage needed on the Pi, and means I don’t need MythTv / NAS / etc. powered over night.

I was going to query why fork instead of just maintaining, but after reading theose comments I see the problem.

So, ok, I need to start shifting packages…

Thanks for the CoMaps pointer, didn’t know about that / issues with Organic Maps