James Read's Code, Containers & Cloud blog

This post is about how, and why, I use Git Annex to implement my 3-2-1 backup strategy backup strategy. In summary, that is;

• At least 3 copies of the data
• In at least 2 different storage mediums
• With at least 1 copy offsite

In practicality, I’ve used Git Annex to implement more like a 9-5-3 backup strategy and track everything nicely. This strategy should mean that I should not ever lose files that I care about ever again.

I am paranoid about data loss

In the past, I have lost files. It pains me that I cannot get back some of my early files from my first PCs and computers. I’ve had hard drives that just suddenly refuse to start up again. I have made typos in disk format commands. I have had busted RAID controllers that spew total garbage over the filesystem. I’ve been permanently locked out of cloud storage access (or, more likely, the cloud provider suddenly has security issues or starts deleting original files - looking at you, Google Photos). I can’t stop any of that happening again, and I refuse to lose any more data because I thought I could trust one form of storage over another.

Preventing data loss ever again only gets more important with age - age you accumulate more files, and memories. So many critical files are only digital now - they cannot be rescanned or recovered from physical copies, because there are no physical copies. I’m talking about pension documents, bank statements, documentation from buying houses, and most importantly, my family photos. Thankfully, I don’t think I’ve ever permanently lost family or holiday photos, but I cannot afford to take a risk with most of those digital-only files; so many, including my wedding photos, photos of my children - if the digital copies are lost, then they are lost forever.

All storage will fail - from Google Photos to RAID

They’re not backup solutions — they’re single points of failure with a false sense of security.

How to lose data with RAID;

• Your controller starts writing junk.

• Your power supply blows up and takes the motherboard, controller, or multiple disks with it.

• You spill coffee over your precious NAS.

• Your NAS tries to float when your house floods.

• You get bitrot, or ransomware, or you type something stupid and corrupt your files.

How to lose data with Google photos/drive;

• Google photos does not store your original files anyway (it strips location and camera information if you download the file again).

• Your Google account gets banned, hacked, or locked out.

• Google decides to delete some of your photos, or loses files.

• You accidently delete a file or folder.

**This goes for every other storage solution. **ZFS, Ceph, S3, Tape, SSDs. They all have single points of failure. Yep, even stuff like S3 and Ceph — get your account banned on S3? Your Ceph servers physically catch fire? Yep. You need a 3-2-1 backup strategy, no matter what storage you are using.

What is hard about implementing a 3-2-1 backup strategy?

Tracking files. That is the hard bit. You can say that you need at least 3 copies of each file, but how do you know where they are? If you are just copying files and relying on manual processes, manual tracking, you’re going to get caught out sooner or later. If you have files that are replicated off-site, it’s a pain to check exactly which files are in which place, off site.

So, we know we need at least a 3-2-1 backup strategy, and we know that tracking is the hard bit. Here’s where we introduce our superhero: Git Annex.

So, what does Git Annex do?

Git calls itself a “stupid content tracker”.

Git Annex calls itself a “stupid filename and metadata tracker”.

Git Annex is not a backup tool, or a better storage system. It just can be used to as a really awesome way to track (and copy, check, etc) files across lots of different types of storage.

Putting it simply, using Git Annex, you can add files (in particular, large files), that don’t have to be pulled down in every place where you clone the repository. However, you can track exactly in which repos you have those files. Let me show by example;

user@host: **git annex whereis "2019-10 Wedding/IMG001.jpg"**
whereis 2019-10 Wedding/IMG001.jpg (6 copies)
  2a85a996-5601-42ee-a5eb-637ab9fcd869 -- HDD-home-storinator-SN-ABC
  e0156b12-7b3f-4697-aebb-4de7456890f1 -- SSD-home-mindstorm-SN-XYZ
  ff4a9c3f-435b-4d13-be85-0b8d1e4631a3 -- HDD-storageunit-SN-QQR
  d2e9ee3e-49bf-4600-bd49-0ed5dc089373 -- AWS-S3-Glacier-account-foo
  7e215541-7715-4490-b3ad-afd8d4e8c10f -- LTO-00000083
  1a4afe67-b5bd-49dc-bb9e-83d0ac1d9bd9 -- LTO-00000413

Yep. My wedding photos are backed up onto 4 different mediums (HDD, SSD, AWS and LTO), in 3 different locations (home, cloud, storage unit).

Git annex allows me to name each repository that I clone, and here’s how I name them;

• Servers; <disk type (HDD or SSD)>-- For example; HDD-home-storinator-SN-ABC . that’s Hard Drive, at home, in a server called “storinator”, with a disk serial number starting “ABC….”. I don’t want to publish my real disk serial numbers on the internet.

• Cold storage (my storage unit); Very similar to servers; -storageunit-

• Cloud; <AWS/Azure/GCP/etc>-<service (eg: S3)>-<username/account number to login>

Note: LTO is Linear Tape. Yep, I backup everything to tape as well. Cold Storage is so useful when a server blows up.

But isn’t Git for developers?

Git isn’t just for developers - modern day infrastructure and sysadmin uses GitOps as much as developers use Git for tracking source code.

Git is the perfect tool for the job, that is open source, widely used, incredibly widely tested, it’s robust, and readily available everwhere. Git Annex is an elegant extension of that concept.

Other essential reasons I use Git Annex;

• It “fails open”. My files are just regular files/symlinks on a filesystem. There’s no “magic”, or proprietary database. This means I’m not too concerned if Git annex development stops, or more importantly, if I want to get files off a LTO tape in 10 years.

• There is no central point of failure — there is no index server that needs to stay online, any cloned repository has a full list of files.

• It works with offline storage (eg, LTO tapes, HDDs in a storage unit) super easily.

• For old photos or files I don’t need often, I can just “drop” them from my servers and workstations to save storage space, knowing that there are safe copies on tape, in the cloud, or elsewhere. Git Annex tracks this for me.

• It’s Open Source and seems pretty stable. Linux support.

• As a hobbyist developer, I’m already super familiar with Git.

• It’s design philosophy is not to do too much (although it supports BitTorrent, Glacier, etc via the native clients if they’re installed locally).

• It works with basically any storage because it doesn’t use any magic — AWS, LTO tapes, HDDs, whatever.

• It’s super easy to track how many copies of a file I have, and where they are. If used properly, it will stop me deleting a file locally if it’s the last copy (or if I’ve told Git Annex to keep at least 3, or 5 copies).

Summary;

All storage has single points of failure. I use Git Annex because I don’t trust any storage, and because it’s so good at tracking files, it really helps me implement a 3–2–1 backup strategy.