https://st2projects.com/tags/backups/ Recent content in Backups on ST2 Projects https://st2projects.com/post-cover.png https://st2projects.com/post-cover.png Hugo en-us Wed, 19 Jan 2022 10:46:50 +0000 https://st2projects.com/posts/doomsday-recovery/ Wed, 19 Jan 2022 10:46:50 +0000 https://st2projects.com/posts/doomsday-recovery/ <h1 id="doomsday-recovery">Doomsday Recovery</h1> <p>This page serves as a dumping ground for ideas on preserving access to online ( and offline ) accounts in the event of disaster</p> <h2 id="general-principles">General Principles</h2> <ul> <li>All passwords are stored in a password safe ( KeePass )</li> <li>Password safe lives on the NAS and is backed up once per day to a spare nas</li> <li>primary NAS is backed up once per week to B2 Storage</li> </ul> <h3 id="todos">TODOs</h3> <ul> <li><input checked="" disabled="" type="checkbox"> Consider a way to ensure access with TOTP codes</li> <li><input checked="" disabled="" type="checkbox"> Ensure duplicate yubikeys are used</li> <li><input disabled="" type="checkbox"> Automate as much as possible</li> <li><input disabled="" type="checkbox"> Document</li> <li><input disabled="" type="checkbox"> Practice</li> </ul> <h2 id="totp-and-2fa">TOTP and 2FA</h2> <p>It&rsquo;s good practice to enable and use 2FA whenever the platform you&rsquo;re using offers it ( if they don&rsquo;t then ask them why! ). Any 2FA is better than no 2FA, but it&rsquo;s a good idea to avoid SMS based tokens, there have been a few high profile victims of sim-jacking and it&rsquo;s not that hard to do&hellip; That&rsquo;s not to say that other 2FA methods are foolproof&hellip; you can still phish for hardware tokens after all.</p>