notabot

That's certainly an option, but depending on how paranoid you are that still typically means that a compromised server can overwrite all of its backup images on the NAS, which could leave you in trouble. If you can configure your NAS to only allow creation of new backups but not allow changing old ones, you might be ok.

The big difference between pull and push is which system has keys to access the other, and what an attacker could do with them. With your home network you might ultimately decide this isn't too important, but it's worth at least thinking about anyway.

In a push setup, each machine has some way (likely an SSH key) to authenticate to the NAS and push backup files to it. Each server has a different key to access a different path on the NAS, so if a server is compromised the attacker only gets access to that part of the NAS data, and if the NAS gets compromised, the attacker can't connect to anything but has access to the encrypted backups (you do encrypt the backups you care about, right?). This limits how much extra data the attacker can read, but has the downside you mentioned.

In a pull setup, the NAS has to have a way to connect to each server, typically as root for file access permissions. This means that if a server is compromised the attacker doesn't gain a way to access even a limited portion of the NAS, but if the NAS is compromised they gain access to keys to root access on every server, which is likely catastrophic.

A compromise solution can work. Have each server back up to a local file, then give the NAS permission to retrieve only that file, rather than root access. Whilst rsync isn't going to work for creating the single file backup, something like borg or restic would. This does mean you need more disk space on each server, but it also means that the server doesn't need direct access to the NAS, and the NAS only needs unpriviledged access to each server, mitigating the risk of a compromise.

Most of us are polite enough not to call you that publicly, but we're all thinking it really, really loudly.

Well, I'm no PugJesus, but I believe this is a reference to the ill fated Donner Party expedition of pioneers attempting to make the east to west journey to California. They became stranded in the Sierra Nevada region during the winter of 1846-47, and ended up resorting to eatting the bodies of the party members who'd perished in order to survive.

These are all very cute, but Junior really loves their stocking.

I wonder how many times we can get the money?

I very much doubt there would be a secobd time, or that you'd get to enjoy your split of the initial bounty. They're trying to turn the population against each other, and already vanishing people. This isn't rule of law stuff, this is "decades later their remain were found in an unmarked mass grave" stuff.

The best documents would be birth certificates for each generation, but there was a massive fire at the Dublin records office in 1922, which destroyed a lot of genological records from before then. If you have any information about where in Ireland your great grandparents were from, you may be able to find local records however. Things like parish registers and birth records for sone denominations were stored outside Dublin, so you may be able to find them, although it'll probably mean going there, or hireing to go there, as most of those records haven't been digitised.

Weirdly, staring at a bright light is one of the things that's almost guaranteed to put me to sleep. A phone screen works pretty well for that.

Fire the start, didn't we?

It's Yoda admitting to arson.

This is an important point to remember. Before you go to sea, you should always curse your legs, that who or whatever has them will continuously dance until they drop from exhaustion.

It might backfire a bit, but look at the desperate expression on that whale's face and tell me it's not worth it.

9 out of 10 wolves recommend this meme!

I did notice your username, so I suspected this might not apply to you, but maybe it'll be helpful to someone.

All I can really offer you is 'good luck, hang in there and this too shall pass', which is probably not a lot of comfort.