Hello,
I’m migrating servers backup to restic with S3 backend.
To perform my backup, I use a systemd service triggered by a timer each day.
[Unit]
Description=Restic Start Backup Job
[Service]
Type=simple
User=restic
AmbientCapabilities=CAP_FOWNER CAP_DAC_READ_SEARCH
ExecStart=/usr/bin/restic -r s3:s3.fr-par.scw.cloud/bucket-namebackup --verbose / --exclude=/proc --exclude=/sys --exclude=/dev --exclude=/run --exclude=/tmp --exclude=/lost+found --exclude=/boot --exclude=/usr/include --exclude=/usr/src --exclude=/var/lib/docker/overlay
EnvironmentFile=/srv/backup/restic-credentials
ProtectControlGroups=yes
ProtectHome=yes
ProtectHostname=yes
ProtectKernelLogs=yes
ProtectKernelModules=yes
ProtectKernelTunables=yes
ProtectSystem=yes
SystemCallArchitectures=native
MemoryDenyWriteExecute=yes
PrivateDevices=yes
[Install]
WantedBy=multi-user.target
I have a problem when I restore from snapshots, only /root folder are not restored.
So I look for solutions, set another systemd capabilities, change backup user from restic to root but nothing fix my problem.
When I search for contents in snapshots with restic ls -l latest I saw /root but anything else, no sub folders.
I understand my restic doesn’t backup content of /root.
There is a restriction of restic ? Can I do anything to perform my backup properly?
Regards