LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 04-24-2013, 10:04 PM   #1
spartha
LQ Newbie
 
Registered: Mar 2013
Posts: 5

Rep: Reputation: Disabled
Question How to build a Virtual data Vault


Hi all,

As a first note I am complete linux noob. (willing to learn)

I am looking to try and setup a virtual data vault. I am planning to use CentOS 6 for this (Any other OS suggestions are welcome.) I have a system with ample space and RAM. Requirements are -
- Secure (i can generate a certificate for SSL/SSH)and disk encryption??
- Multiple sub vaults that have designated access (interaction between these vaults should be completely isolated, any transfer of information should be as though going to a complete different server)
- Should be able to create multiple user groups and associate them to the sub vaults.
- I will need to have htpps access to the sub vaults, where the user of a particular group logs in to get designated access to the subvault.
- Probably build a RAID for storage.

These are the primarily things I have in mind. Please suggest if anything else is required.

Could the experts here suggest me how to do these? I know this is too generic but links to any useful resources is also appreciated.

Thanks and apologies if this was too vague. This is just a though that I got in mind and not sure of specifics

Hope to learn a lot from you guys

-Partha
 
Old 04-25-2013, 01:50 AM   #2
tallship
Member
 
Registered: Jul 2003
Location: On the Beaches of Super Sunny Southern San Clemente, California USA
Distribution: Slackware - duh!
Posts: 534
Blog Entries: 3

Rep: Reputation: 118Reputation: 118
Two things come to mind.

At the lowest level, anything with the word *vault* in it makes me think of one of those bank heist movies. So at the lowest level of consideration is encryption - You can't easily create a PV (during the standard install process) for certain volumes in CentOS.... Primarily speaking, I'm talking the partition on which you mount /boot. And I'm a firm believer that you shouldn't bother encrypting any volumes if you can't encrypt /boot or SWAP either - what would be the point?

So first, I recommend familiarizing yourself with LVM and encryption of your entire drive, including your swap partition and /boot too. This is a good primer: http://slackware.oregonstate.edu/sla...ADME_CRYPT.TXT

Also, would you consider debian instead of CentOS? If so, then I would look HERE

I hope that helps!

Kindest regards,

.
 
Old 04-25-2013, 05:11 AM   #3
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 3,461

Rep: Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552
I'm guessing this is a production server, so have you any plans around taking secure backups?
 
Old 04-25-2013, 05:20 AM   #4
spartha
LQ Newbie
 
Registered: Mar 2013
Posts: 5

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by tallship View Post
Two things come to mind.

At the lowest level, anything with the word *vault* in it makes me think of one of those bank heist movies. So at the lowest level of consideration is encryption - You can't easily create a PV (during the standard install process) for certain volumes in CentOS.... Primarily speaking, I'm talking the partition on which you mount /boot. And I'm a firm believer that you shouldn't bother encrypting any volumes if you can't encrypt /boot or SWAP either - what would be the point?

So first, I recommend familiarizing yourself with LVM and encryption of your entire drive, including your swap partition and /boot too. This is a good primer: http://slackware.oregonstate.edu/sla...ADME_CRYPT.TXT

Also, would you consider debian instead of CentOS? If so, then I would look HERE

I hope that helps!

Kindest regards,

.
Thanks for the inputs. openmediavault looks good. I will explore it a little more.

But rather I was hoping for build it your self type not ready tools like open media vault. I am mainly looking to learn and my way is to implement an idea and what I have is just the idea, I need to learn and implement it
I will take a look at LVM as well and was considering complete drive encryption, not sure how to accomplish that yet. I will keep that in mind as well.
Thanks again
Partha
 
Old 04-25-2013, 05:21 AM   #5
spartha
LQ Newbie
 
Registered: Mar 2013
Posts: 5

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by TenTenths View Post
I'm guessing this is a production server, so have you any plans around taking secure backups?
No this is not production, this is my personal project, mainly to learn to set up things from scratch over an idea. backup is a good thought, I will look into RAID for that.
Thanks though
Partha
 
Old 04-25-2013, 05:27 AM   #6
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 3,461

Rep: Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552Reputation: 1552
As it's for your own personal project it's less of an issue.

For a production system RAID is not a backup, can't stress that importantly enough.

RAID won't help if you've a catastrophic hardware failure that affects multiple disks, or in a case I've had, comms room fire that melted the servers.
 
Old 04-25-2013, 08:45 AM   #7
spartha
LQ Newbie
 
Registered: Mar 2013
Posts: 5

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by TenTenths View Post
As it's for your own personal project it's less of an issue.

For a production system RAID is not a backup, can't stress that importantly enough.

RAID won't help if you've a catastrophic hardware failure that affects multiple disks, or in a case I've had, comms room fire that melted the servers.
Oh then you were suggesting external backups Well at this point, Ill skip that as thats not an issue as noted.
 
Old 04-25-2013, 11:23 PM   #8
chrism01
LQ Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Rocky 9.2
Posts: 18,348

Rep: Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749Reputation: 2749
RAID also doesn't protect from erroneous deletes
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: TrueCrypt Locks Down Data In a Rock-Solid Vault LXer Syndicated Linux News 0 08-31-2011 10:42 PM
Open source and Data Vault modelling Mark1986 Linux - General 5 10-27-2010 02:31 AM
Excessive build-up of virtual memory by program johan162 Programming 13 01-24-2010 01:12 PM
Need advice on system build for a virtual server machine ielectronics Linux - Hardware 3 09-23-2007 02:50 PM
Build Nameserver and Virtual Hosts bytebrowser Linux - Networking 5 04-30-2004 09:02 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 09:28 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration