ssh-audit VS tarsnap

No. Mitigations are available now. Follow the recommendations from ssh-audit (master version). [0]

0. https://github.com/jtesta/ssh-audit

Match Address 10.0.0.0/8,172.16.0.0/12,192.168.0.0/16 PasswordAuthentication yes ```` You may audit your SSH service by https://github.com/jtesta/ssh-audit

Off topic: audit tool for OpenSSH config files.

Posted here because SSH algorithms are a moving target.

https://github.com/jtesta/ssh-audit/tree/e50ac5c84d46e902e02...

In addition to ssllabs, I'll recommend jtesta's ssh-audit.py

Tarsnap for configs and critical stuff (password database, emails).

Someone does :)

https://tarsnap.com

> Tarsnap uses a prepaid model based on actual usage:

> Storage: 250 picodollars / byte-month of encoded data

Colin Percival's tarsnap

In past threads, people have mentioned enjoying my Tarsnap (https://github.com/Tarsnap/tarsnap) code. I personally think that the spiped (https://github.com/Tarsnap/spiped) code is even better.

I prefer Vorta myself ( https://github.com/borgbase/vorta ) as it also has incremental and encrypted backups, as well as being a fraction of the price, but tarsnap seems to still be in very-slow development: https://github.com/Tarsnap/tarsnap , so I'd say from a quick look it's still trustworthy.

Each server also upload their configs and « important » data (my mails and git repos) to tarsnap 3. Tarsnap storage is not as cheap as B2, so I try not to upload too much data there, but it's reliable and easy to use. It was also my first backup solution, and barely cost me 10$ a year so I keep it as a secondary backup.

Not foolish! The Tarsnap client code is open source, but the license file prohibits anyone from using the code: https://github.com/Tarsnap/tarsnap/blob/master/COPYING

> Redistribution and use in source and binary forms, without modification,

Yes. For the curious,

https://github.com/Tarsnap/tarsnap/graphs/contributors