This article <https://www.zdnet.com/article/linux-pc-acting-up-how-to-check-for-bad-blocks-on-a-hard-drive-before-its-too-late/>
is, I would say, more of a starting point for thinking about the
issue, rather than the final word on what to do.

I used to use the badblocks utility a lot, too. However, the last I
checked, it had limitations on the size of disks it could cope with --
a 12-terabyte drive was beyond its capabilities. So I had to write my
own disk-scanning utility <https://gitlab.com/ldo/scan_disks/>. (I
don’t bother much with SMART -- I think it’s mostly a waste of time.)

Frankly, I would not like to continue using a disk that had bad blocks
on it. I did sort-of try that once -- I had a 3-terabyte drive that
developed errors within the warranty period. Before taking it back to
the shop, I wrote zeroes over the whole drive, and as a result of
that, the bad blocks disappeared. And the shop couldn’t find anything
wrong with it, so they refused a warranty return.

That drive did last a few more years in my backup machine, before
developing more bad sectors, after which I retired it.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 7/30/25 8:26 PM, Lawrence D'Oliveiro wrote:

This article <https://www.zdnet.com/article/linux-pc-acting-up-how-to-check-for-bad-blocks-on-a-hard-drive-before-its-too-late/>
is, I would say, more of a starting point for thinking about the
issue, rather than the final word on what to do.

I used to use the badblocks utility a lot, too. However, the last I
checked, it had limitations on the size of disks it could cope with --
a 12-terabyte drive was beyond its capabilities. So I had to write my
own disk-scanning utility <https://gitlab.com/ldo/scan_disks/>. (I
don’t bother much with SMART -- I think it’s mostly a waste of time.)

Frankly, I would not like to continue using a disk that had bad blocks
on it. I did sort-of try that once -- I had a 3-terabyte drive that
developed errors within the warranty period. Before taking it back to
the shop, I wrote zeroes over the whole drive, and as a result of
that, the bad blocks disappeared. And the shop couldn’t find anything
wrong with it, so they refused a warranty return.

That drive did last a few more years in my backup machine, before
developing more bad sectors, after which I retired it.

I don't have a good answer for you. A lot of the
old Linux disk-check utilities were writ in the
Bad Old Days of sub-terabyte, maybe sub-gigabyte,
HDDs. If you can still get them, they're mostly
just useless now.

Choices are re-writing/re-compiling them ... no minor
task ... or kinda writing your own from scratch.

Figuring out how some programmer from decades ago
was thinking can be just *horrible* - and not too
many added good notes to the source code.

A few years ago I wrote a whole-disk reader in 'C'.
(also a Pascal/Delphi version but it CALLED some of
the 'C' stuff). Had to deal with BIG offsets ... which
meant 64/128 bit math types and less-known variants
of 'seek()' and related. I did make it work. Kinda
looked like a nice 'ghex'-ish display.

Thing is, you COULD expand on that to do read/write
probes of any sectors. How many patterns you think
you need to try on each sector - up to you.

In short it CAN be done - but by YOU. 1990 utilities
aren't gonna cut it.

Best compromise - the built-in capabilities in most
SATA/related drives. "S.M.A.R.T./smartctl" can do
this - but expect it to take 24 hours on large disks.
Just install the 'smartmontools' pkg. I *think* Gnome
has a GUI for them.

Dunno if 'badblocks' can do huge disks.

FIXING/relocating bad blocks ... a whole new challenge !

Some stuff just ain't so easy.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-07-31 02:26, Lawrence D'Oliveiro wrote:

This article <https://www.zdnet.com/article/linux-pc-acting-up-how-to-check-for-bad-blocks-on-a-hard-drive-before-its-too-late/>
is, I would say, more of a starting point for thinking about the
issue, rather than the final word on what to do.

I used to use the badblocks utility a lot, too. However, the last I
checked, it had limitations on the size of disks it could cope with --
a 12-terabyte drive was beyond its capabilities. So I had to write my
own disk-scanning utility <https://gitlab.com/ldo/scan_disks/>. (I
don’t bother much with SMART -- I think it’s mostly a waste of time.)

Frankly, I would not like to continue using a disk that had bad blocks
on it. I did sort-of try that once -- I had a 3-terabyte drive that
developed errors within the warranty period. Before taking it back to
the shop, I wrote zeroes over the whole drive, and as a result of
that, the bad blocks disappeared. And the shop couldn’t find anything
wrong with it, so they refused a warranty return.

This is one of the SMART features.
Even showing the bad blocks is not enough to get a refund/return.

That drive did last a few more years in my backup machine, before
developing more bad sectors, after which I retired it.

I have a dead Seagate 3TB disk, lost all the data inside.

--
Cheers, Carlos.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 31/07/2025 14:21, Carlos E.R. wrote:

On 2025-07-31 02:26, Lawrence D'Oliveiro wrote:

This article
<https://www.zdnet.com/article/linux-pc-acting-up-how-to-check-for-bad-blocks-on-a-hard-drive-before-its-too-late/>
is, I would say, more of a starting point for thinking about the
issue, rather than the final word on what to do.

I used to use the badblocks utility a lot, too. However, the last I
checked, it had limitations on the size of disks it could cope with --
a 12-terabyte drive was beyond its capabilities. So I had to write my
own disk-scanning utility <https://gitlab.com/ldo/scan_disks/>. (I
don’t bother much with SMART -- I think it’s mostly a waste of time.)

Frankly, I would not like to continue using a disk that had bad blocks
on it. I did sort-of try that once -- I had a 3-terabyte drive that
developed errors within the warranty period. Before taking it back to
the shop, I wrote zeroes over the whole drive, and as a result of
that, the bad blocks disappeared. And the shop couldn’t find anything
wrong with it, so they refused a warranty return.

This is one of the SMART features.
Even showing the bad blocks is not enough to get a refund/return.

I got a replacement SSD under SMART info - the vendor checked it and
said 'yup. that's fucked' and gave me another one.
We are good friends

That drive did last a few more years in my backup machine, before
developing more bad sectors, after which I retired it.

I have a dead Seagate 3TB disk, lost all the data inside.

If something other than a sector goes bad you are in real trouble.
We did manage to swap circuit boards on a drive once and get the data off it


--
Religion is regarded by the common people as true, by the wise as
foolish, and by the rulers as useful.

(Seneca the Younger, 65 AD)

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Thu, 31 Jul 2025 15:21:19 +0200, Carlos E.R. wrote:

I have a dead Seagate 3TB disk, lost all the data inside.

This is why I have a backup machine.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

"Carlos E.R." <[email protected]d> wrote:

I have a dead Seagate 3TB disk, lost all the data inside.

Probably a decade old?

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-08-01 03:08, Lawrence D'Oliveiro wrote:

On Thu, 31 Jul 2025 15:21:19 +0200, Carlos E.R. wrote:

I have a dead Seagate 3TB disk, lost all the data inside.

This is why I have a backup machine.

Yes, I do, but the files there were not that important (movies), and I
had no space for them. 3TB was my biggest disk at the time.

--
Cheers, Carlos.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-08-01 10:05, Marc Haber wrote:

"Carlos E.R." <[email protected]d> wrote:

I have a dead Seagate 3TB disk, lost all the data inside.

Probably a decade old?

Probably. I think that model was infamous.

--
Cheers, Carlos.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

"Carlos E.R." <[email protected]d> wrote:

On 2025-08-01 10:05, Marc Haber wrote:

"Carlos E.R." <[email protected]d> wrote:

I have a dead Seagate 3TB disk, lost all the data inside.

Probably a decade old?

Probably. I think that model was infamous.

I apologize. I thought that we were talking about practical relevant
cases.

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-08-01 14:31, Marc Haber wrote:

"Carlos E.R." <[email protected]d> wrote:

On 2025-08-01 10:05, Marc Haber wrote:

"Carlos E.R." <[email protected]d> wrote:

I have a dead Seagate 3TB disk, lost all the data inside.

Probably a decade old?

Probably. I think that model was infamous.

I apologize. I thought that we were talking about practical relevant
cases.

I think that Seagate model had many disk failing early. Defective model.
But as mine was working fine, I continued using it, till one day it
failed completely. Probably a pcb replacement would work, but that's not something I can do.

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

--
Cheers, Carlos.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

"Carlos E.R." <[email protected]d> wrote:

I think that Seagate model had many disk failing early. Defective model.
But as mine was working fine, I continued using it, till one day it
failed completely. Probably a pcb replacement would work, but that's not >something I can do.

No backup, no mercy.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Le 01-08-2025, Marc Haber <[email protected]> a écrit :

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

When a backup is never tested, it's called a Schrödinger's backup.

--
Si vous avez du temps à perdre :
https://scarpet42.gitlab.io

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync. They are effectively mirror filesystems, not in any special “backup” format. These are the easiest to verify, and restoration can be done with the same file- manipulation commands I use every day.

In particular, that means that, in a moment of crisis (which is what
happens when you find you’ve lost data), I am doing the restoration using familiar commands with which I am (hopefully) less likely to make
mistakes.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-08-02 01:55, Lawrence D'Oliveiro wrote:

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync. They are effectively mirror filesystems, not in any special “backup” format. These are the easiest to verify, and restoration can be done with the same file- manipulation commands I use every day.

In particular, that means that, in a moment of crisis (which is what
happens when you find you’ve lost data), I am doing the restoration using familiar commands with which I am (hopefully) less likely to make
mistakes.

Once an rsync backup deleted the original.

I was using the --delete parameter, which is intended to delete files
that are gone from the source, and delete them in the destination (when
you overwrite a backup). Unfortunately, the paths were messed up, and it deleted the files on the source of another different backup.

--
Cheers, Carlos.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sat, 2 Aug 2025 03:39:19 +0200, Carlos E.R. wrote:

Once an rsync backup deleted the original.

I was using the --delete parameter, which is intended to delete files
that are gone from the source, and delete them in the destination (when
you overwrite a backup). Unfortunately, the paths were messed up, and it deleted the files on the source of another different backup.

A computer is a powerful tool. It will do exactly what you tell it to do,
no more, no less.

Try --delete-after, which postpones all the deletions until after the new
and updated files have been successfully copied -- and which doesn’t do
any deletions at all, if there were errors in those copies.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 8/1/25 11:24 PM, Lawrence D'Oliveiro wrote:

On Sat, 2 Aug 2025 03:39:19 +0200, Carlos E.R. wrote:

Once an rsync backup deleted the original.

I was using the --delete parameter, which is intended to delete files
that are gone from the source, and delete them in the destination (when
you overwrite a backup). Unfortunately, the paths were messed up, and it
deleted the files on the source of another different backup.

A computer is a powerful tool. It will do exactly what you tell it to do,
no more, no less.

Try --delete-after, which postpones all the deletions until after the new
and updated files have been successfully copied -- and which doesn’t do
any deletions at all, if there were errors in those copies.

I had a similar gross fault with "-delete". The prob
was that mounted shares CAN fail, and then the param
sees an empty dir and dutifully deletes all the backups.
Had one weird case with sort of reverse-update trick,
where the SOURCE files got deleted instead of the backups.

Fair fix ... look in /proc/mounts, quick pattern match,
to see if you're still connected. "if '/my/whatever' in
/proc/mounts then :"

Next, subdivide the backup a bit - and do the above
check before each segment. NEVER feel sure that
mounts are gonna be perfectly solid.

It's not 101% sure, but close enough for govt work.

The "-delete" is ultra-valuable and you're probably
going to HAVE to use it lest mass quantities of
old junk accumulate. In an office environ where
people keep creating/deleting/moving all the time
that's a biggie. All you can do is make it safer,
more sure.

In my big backup pgm I also added a little "intelligence",
a quick eval of what the size of the targets were LAST
time -vs- THIS time. If TOO different it'd mail error
messages and NOT proceed without manual intervention.

Biz/corporate, good backups are IMPERATIVE ... and
preferably local AND to 'cloud' (DO pre-encrypt !
Don't BELIEVE cloud providers. Encrypt, send, re-name
if needed, but never put a plain file on their systems
for a millisecond)

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 8/1/25 3:29 PM, Stéphane CARPENTIER wrote:

Le 01-08-2025, Marc Haber <[email protected]> a écrit :

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

When a backup is never tested, it's called a Schrödinger's backup.

Hey, I *like* that term !!! :-)

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 8/1/25 9:39 PM, Carlos E.R. wrote:

On 2025-08-02 01:55, Lawrence D'Oliveiro wrote:

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync. They are
effectively mirror filesystems, not in any special “backup” format. These
are the easiest to verify, and restoration can be done with the same
file-
manipulation commands I use every day.

In particular, that means that, in a moment of crisis (which is what
happens when you find you’ve lost data), I am doing the restoration using >> familiar commands with which I am (hopefully) less likely to make
mistakes.

Once an rsync backup deleted the original.

Had that happen once. It was a 'reverse' operation,
a kind of clean-up, of the source folders. Alas
a mount became un-mounted and ...

I was using the --delete parameter, which is intended to delete files
that are gone from the source, and delete them in the destination (when
you overwrite a backup). Unfortunately, the paths were messed up, and it deleted the files on the source of another different backup.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Lawrence D'Oliveiro <[email protected]d> wrote:

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync.

You're comparing 1998 with 2025. Do you think that is fair?

The OS in question wasn't even unix back then.

Btw, script wrappers around rsync do not scale to even a small fleet.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Stéphane CARPENTIER <[email protected]> wrote:

Le 01-08-2025, Marc Haber <[email protected]> a écrit :

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

When a backup is never tested, it's called a Schrödinger's backup.

Right. Back then, verifying a backup meant having spare hardware. You
didn't have that in the 1990ies typical small company. Today you can
restore in another VM and verify the backup there. That was simply not realistic 30 years ago.

That was when I was still using windows. The backup software used back
then had a GUI. You included the root, and then excluded by clicking
in the tree. So I thought. What I didn't know that with the first
"exclude" click, the software built a (static!) list of all files to
back up. And didn't maintain it. So all files that were created after
that first "exclude" click never found their way into a backup.

And, "verify backup" didn't uncover this, since of course all files
that were backed up could be read back and verified just fine. Just
the ones that never got backed up of course didn't cause an error.

The "correct" way would have been to not use the GUI but instead write
the paths to exclude with wildcards into a text file.

I still consider this what we would call today an UX nightmare and
blame the software vendor. 30 years later, I still consider this
implementation one of the most diabolic footguns that I ever
encountered.

Of course, with 30 years of more experience, one could have tried a
data only restore to a different part of the directory tree, but as a
junior sysadmin making some extra money on the side of college, that
didnt occur to me back then. One of the more painful lessons of a life
in IT.

Greetings
Marc
--
---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " |
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 2025-08-02 05:24, Lawrence D'Oliveiro wrote:

On Sat, 2 Aug 2025 03:39:19 +0200, Carlos E.R. wrote:

Once an rsync backup deleted the original.

I was using the --delete parameter, which is intended to delete files
that are gone from the source, and delete them in the destination (when
you overwrite a backup). Unfortunately, the paths were messed up, and it
deleted the files on the source of another different backup.

A computer is a powerful tool. It will do exactly what you tell it to do,
no more, no less.

Try --delete-after, which postpones all the deletions until after the new
and updated files have been successfully copied -- and which doesn’t do
any deletions at all, if there were errors in those copies.

Ah, interesting, thanks.

--
Cheers, Carlos.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sat, 02 Aug 2025 10:07:02 +0200, Marc Haber wrote:

Lawrence D'Oliveiro <[email protected]d> wrote:

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync.

You're comparing 1998 with 2025. Do you think that is fair?

Andrew Tridgell submitted his PhD thesis, in which he developed rsync’s algorithm for comparing files across the network without having to copy
the entirety of either side onto the other, in 1998, as I recall.

At that time (and for a few years after), people would have been doing
backups using commands like “cp -u”. Which work well enough, as far as
they go.

The OS in question wasn't even unix back then.

The clunkiness of such compared to *nix systems was already becoming
apparent.

Btw, script wrappers around rsync do not scale to even a small fleet.

They do, actually. Remember, rsync itself is doing all the grunt work, and
that can happily handle hundreds of gigabytes, or terabytes of data. (Just speaking from personal experience.)

And given that CERN, for example, is a heavy Linux user, I imagine they
use rsync to deal with their petabytes of data from the LHC and other
projects as well.

How do I know this? Because being a bunch of scientists, if they had to
develop a more robust tool for that purpose, they would have announced and open-sourced it by now.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 8/2/25 7:32 PM, Lawrence D'Oliveiro wrote:

On Sat, 02 Aug 2025 10:07:02 +0200, Marc Haber wrote:

Lawrence D'Oliveiro <[email protected]d> wrote:

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync.

You're comparing 1998 with 2025. Do you think that is fair?

Andrew Tridgell submitted his PhD thesis, in which he developed rsync’s algorithm for comparing files across the network without having to copy
the entirety of either side onto the other, in 1998, as I recall.

At that time (and for a few years after), people would have been doing backups using commands like “cp -u”. Which work well enough, as far as they go.

The OS in question wasn't even unix back then.

The clunkiness of such compared to *nix systems was already becoming apparent.

Btw, script wrappers around rsync do not scale to even a small fleet.

They do, actually. Remember, rsync itself is doing all the grunt work, and that can happily handle hundreds of gigabytes, or terabytes of data. (Just speaking from personal experience.)

And given that CERN, for example, is a heavy Linux user, I imagine they
use rsync to deal with their petabytes of data from the LHC and other projects as well.

How do I know this? Because being a bunch of scientists, if they had to develop a more robust tool for that purpose, they would have announced and open-sourced it by now.

'cp' works ... but it's dumb as dirt.

Kind of odd that rsync has never really been
ported to Winders. The far more excessive
ownership info used in Winders files now
would make it a bit of a pain.

IF you can find good doc, rsync has options that
deal with almost any situation you can imagine.
Great utility !

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 8/5/25 23:37, rbowman wrote:

On Tue, 5 Aug 2025 19:54:56 -0400, c186282 wrote:

Best modern plan = TWO local copies, on different machines/media, and
one dup (maybe just the 'important stuff') to 'cloud' storage. Not
too expensive. Just automate it all so it works overnight.

We used portable drives that were off premises. That was part of the
formal backups the build guy did. Informally everyone checked out the
entire source tree in Subversion and kept it updated so unless the
building was nuked there would be a backup.

For my works in progress I'd have the code on two or three machines plus
the corporate OneDrive.

My personal projects at home usually are copied to two or three machines.
I don't bother with the cloud since there's nothing I couldn't recreate.

Not the best practice except for you developers. Recently the computers
housing the PCLinuxOS forum were caught in a fire. With the cloud backup
the Forum was back online in less than a week.

Documentation, SDKs, IDEs and so forth are safely stored wherever I got
them from in the first place, and probably newer versions to boot.

I do have some mp3s on a WD Passport and assorted thumb drives because no
way in hell do I want to rip a shelf full of CDs again. At least they're easier than cassettes.

Good luck and they are faster than CDs or floppies.

bliss- Dell Precision 7730- PCLOS 2025.06- Linux 6.12.41-pclos1- KDE
Plasma 5.27.11

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

c186282 <[email protected]> wrote:

Note - ALWAYS pre-encrypted before sending to cloud.
Encrypt local, random name, copy to DBx, Rename
re-date and whatever else is possible afterwards.
OpenSSL can do most of the security stuff. I just
do NOT believe claims of their own 'security'.
Send 'em binary garbage.

Sure, although keep in mind that one day in the future they might
be able to decrypt even your old self-encrypted files easily, like
encrypted files from the 1990s can be today. Even if they say that
data is deleted, there's no way to be sure that someone didn't
keep/steal a copy.

--
__ __
#_ < |\| |< _#

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 8/6/25 5:14 PM, Computer Nerd Kev wrote:

c186282 <[email protected]> wrote:

Note - ALWAYS pre-encrypted before sending to cloud.
Encrypt local, random name, copy to DBx, Rename
re-date and whatever else is possible afterwards.
OpenSSL can do most of the security stuff. I just
do NOT believe claims of their own 'security'.
Send 'em binary garbage.

Sure, although keep in mind that one day in the future they might
be able to decrypt even your old self-encrypted files easily, like
encrypted files from the 1990s can be today. Even if they say that
data is deleted, there's no way to be sure that someone didn't
keep/steal a copy.

Well, 'relevance' tends to fall off over time.
Ten or twenty year old bank/personnel records
and such ... not very interesting.

Even now I'm sure the spooks can crack AES256 and
likely most of the others. Quantum makes that much
faster. Have seen allegedly 'quantum-resistant'
ciphers, but not sure how well they live up to
the label yet. There's also the issue of govts
demanding backdoors - ciphers ARE still classed
as 'munitions'.

First saw "NSA BACKDOOR" in the Win2k registry ...

For my personal stuff now I tend to use PGP/GPG or
openssl with Camilla cipher. Kept hearing about
some bug in the AES cipher. One note though, for
BIG backups, openssl is MUCH faster. GPG seems
to have to be started, initialized, then do the
job, then it shuts down and you have to repeat
for the next (250,000) files. Openssl works
99% the same in Linux/Unix and Winders ... have
used it on all platforms for fast backups.

And ANY encryption is better than NONE out in
the Cloud. Unless you're a drug cartel the
spooks are NOT going to be the ones looking
at your files. It's gonna be opportunistic
little hacks, probably doing quick text
searches on your files.

I wrote a little utility some years back that
was not 'encryption' per-se but an 'obfuscation'
app. It did a few of the old cheap tricks. We
used it for confidential in-house stuff. It
was very quick and would work on binaries. The
idea with obfuscation/scrambling is that if you
can see how the pgm works there IS a path to
unscrambling if you lose the key. Might take
half a day, but you can do it.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

c186282 <[email protected]> writes:

On 8/6/25 5:14 PM, Computer Nerd Kev wrote:

c186282 <[email protected]> wrote:

Note - ALWAYS pre-encrypted before sending to cloud.
Encrypt local, random name, copy to DBx, Rename
re-date and whatever else is possible afterwards.
OpenSSL can do most of the security stuff. I just
do NOT believe claims of their own 'security'.
Send 'em binary garbage.

Sure, although keep in mind that one day in the future they might be
able to decrypt even your old self-encrypted files easily, like
encrypted files from the 1990s can be today. Even if they say that
data is deleted, there's no way to be sure that someone didn't
keep/steal a copy.

Well, 'relevance' tends to fall off over time. Ten or twenty year
old bank/personnel records and such ... not very interesting.

Even now I'm sure the spooks can crack AES256 and likely most of the
others. Quantum makes that much faster. Have seen allegedly
'quantum-resistant' ciphers, but not sure how well they live up to
the label yet. There's also the issue of govts demanding backdoors -
ciphers ARE still classed as 'munitions'.

AES-256 (properly implemented and deployed) has stood up to decades of
analysis by a community which has successfully broken multiple other primitives: RC4, MD5, SHA1, SIKE, FF3. Never say never, but by this
stage, I think the reason AES has not been added to this list is because
there is nothing to find.

As for quantum computers, if AES is the first thing you worry about then
you really do not know what you’re talking about.

A (currently hypothetical) quantum computer of sufficient size would in principle reduce AES-256 key search to 2^128 time complexity (with a
rather larger constant factor than a classical computer) - far beyond
what human civilization can achieve. Adding more quantum computers
doesn’t help as much as you might imagine since (AIUI) Grover’s
algorithm scales sublinearly.

The algorithms which will be meaningfully vulnerable to nontrivial
quantum computers (at such time as they actually built) are the
classical asymmetric algorithms, based on factorization problems and
various forms of discrete logarithm problem: RSA, (EC)DSA, (EC)DH. The
concern over the relative novelty of their replacements (MLDSA etc)
motivates the widespread (although not universal) preference for hybrids instead of a pure-PQC solution.

--
https://www.greenend.org.uk/rjk/

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On 07/08/2025 18:20, Richard Kettlewell wrote:

A (currently hypothetical) quantum computer of sufficient size would in principle reduce AES-256 key search to 2^128 time complexity (with a
rather larger constant factor than a classical computer) - far beyond
what human civilization can achieve. Adding more quantum computers
doesn’t help as much as you might imagine since (AIUI) Grover’s
algorithm scales sublinearly.

You mathematicians...

I'll take your word for it :-)

--
"I am inclined to tell the truth and dislike people who lie consistently.
This makes me unfit for the company of people of a Left persuasion, and
all women"

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

c186282 <[email protected]> wrote:

On 8/6/25 5:14 PM, Computer Nerd Kev wrote:

c186282 <[email protected]> wrote:

Note - ALWAYS pre-encrypted before sending to cloud.
Encrypt local, random name, copy to DBx, Rename
re-date and whatever else is possible afterwards.
OpenSSL can do most of the security stuff. I just
do NOT believe claims of their own 'security'.
Send 'em binary garbage.

Sure, although keep in mind that one day in the future they might
be able to decrypt even your old self-encrypted files easily, like
encrypted files from the 1990s can be today. Even if they say that
data is deleted, there's no way to be sure that someone didn't
keep/steal a copy.

Well, 'relevance' tends to fall off over time.
Ten or twenty year old bank/personnel records
and such ... not very interesting.

Potentially still useful for fraudsters though.

--
__ __
#_ < |\| |< _#

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Nuno Silva <[email protected]d> wrote at 22:04 this Tuesday (GMT):

On 2025-08-05, candycanearter07 wrote:

Carlos E.R. <[email protected]d> wrote at 01:39 this Saturday (GMT): >>> On 2025-08-02 01:55, Lawrence D'Oliveiro wrote:

On Fri, 01 Aug 2025 14:31:54 +0200, Marc Haber wrote:

I lost 540 MB from a failed Fujitsu drive in 1998 and found out the
backup was invalid the hard way.

My backups are done with rsync, or script wrappers around rsync. They are >>>> effectively mirror filesystems, not in any special “backup” format. These
are the easiest to verify, and restoration can be done with the same file- >>>> manipulation commands I use every day.

In particular, that means that, in a moment of crisis (which is what
happens when you find you’ve lost data), I am doing the restoration using
familiar commands with which I am (hopefully) less likely to make
mistakes.

Once an rsync backup deleted the original.

I was using the --delete parameter, which is intended to delete files
that are gone from the source, and delete them in the destination (when
you overwrite a backup). Unfortunately, the paths were messed up, and it >>> deleted the files on the source of another different backup.

That's why you have backups of backups.

But... what if these fail too!?

10 PRINT "That's why you have"
20 PRINT "backups of backups of"
30 GOTO 20

(Ok, in reality, a second level probably already drives the likelihood
down a lot. But, of course, this gets to be an engineering problem, and
one gets to ask what could possibly go wrong outside of these
likelihoods.

Yeah, diminishing returns and all.

And one could do things such as not using the same
approach/scripts/software for both levels. Just like NASA had BFS
developed separately from PASS.)

I'll keep that in mind when/if i set up another backup system.
--
user <candycane> is generated from /dev/urandom

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)