we are some kind of master admins which are contracted by regular system admins for additional system administration.
I have to backup around 200 Hosts from 25 customers with numerous additional admins. Some hosts are very insecure and “admins” might do and will do weird things at any time.
So backups are very important for these machines.
I would love to backup all those machines with restic but i am afraid of repo security. What is a backup worth if an intruder can modify or delete the backup repo from a hacked host ? Do I have to add 200 users, one for every host we backup to separate the repos from each other ?
I can imagine backups via sftp or s3 or swift.
Is there any chance I can reliably run restic in such an environment ? Any ideas how to make this setup as secure as possible ?