Duplicity jail

Setup for Duplicity service jail with iocage.

On FreeNAS

Create jail:

Create user on FreeNAS with ID 983, nologin to match the user in the jail.

Nullfs mount datasets to backup in jail:

Duplicity data:

Start jail and enter.

Jail

In the jail, update all packages and install duplicity and py27-boto.

Create a user with uid 983 to match mounted data.

Add script /usr/local/scripts/duplicitybak, put secrets in /usr/local/scripts/duplicitybak.auth.

Secrets in /usr/local/scripts/duplicitybak.auth:

Set executable:

Now I can be run from a crontab outside of the jail:

Last updated