Duply Conf

1. # gpg encryption settings, simple settings:
2. # GPG_KEY='disabled' - disables encryption alltogether
3. # GPG_KEY='<key1>[,<key2>]'; GPG_PW='pass' - encrypt with keys, sign
4. # with key1 if secret key available and use GPG_PW for sign & decrypt
5. # GPG_PW='passphrase' - symmetric encryption using passphrase only
6. #GPG_KEY='_KEY_ID_'
7. GPG_PW='XX'
8. # gpg encryption settings in detail (extended settings)
9. # the above settings translate to the following more specific settings
10. # GPG_KEYS_ENC='<keyid1>,[<keyid2>,...]' - list of pubkeys to encrypt to
11. # GPG_KEY_SIGN='<keyid1>|disabled' - a secret key for signing
12. # GPG_PW='<passphrase>' - needed for signing, decryption and symmetric
13. # encryption. If you want to deliver different passphrases for e.g.
14. # several keys or symmetric encryption plus key signing you can use
15. # gpg-agent. Add '--use-agent' to the duplicity parameters below.
16. # also see "A NOTE ON SYMMETRIC ENCRYPTION AND SIGNING" in duplicity manpage
17. # notes on en/decryption
18. # private key and passphrase will only be needed for decryption or signing.
19. # decryption happens on restore and incrementals (compare archdir contents).
20. # for security reasons it makes sense to separate the signing key from the
21. # encryption keys. https://answers.launchpad.net/duplicity/+question/107216
22. #GPG_KEYS_ENC='<pubkey1>,<pubkey2>,...'
23. #GPG_KEY_SIGN='<prvkey>'
24. # set if signing key passphrase differs from encryption (key) passphrase
25. # NOTE: available since duplicity 0.6.14, translates to SIGN_PASSPHRASE
26. #GPG_PW_SIGN='<signpass>'
27.  
28. # gpg options passed from duplicity to gpg process (default='')
29. # e.g. "--trust-model pgp|classic|direct|always"
30. # or "--compress-algo=bzip2 --bzip2-compress-level=9"
31. # or "--personal-cipher-preferences AES256,AES192,AES..."
32. #GPG_OPTS=''
33.  
34. # disable preliminary tests with the following setting
35. #GPG_TEST='disabled'
36.  
37. # credentials & server address of the backup target (URL-Format)
38. # syntax is
39. # scheme://[user:password@]host[:port]/[/]path
40. # probably one out of
41. # file://[/absolute_]path
42. # ftp[s]://user[:password]@other.host[:port]/some_dir
43. # hsi://user[:password]@other.host/some_dir
44. # cf+http://container_name
45. # imap[s]://user[:password]@host.com[/from_address_prefix]
46. # rsync://user[:password]@other.host[:port]::/module/some_dir
47. # # rsync over ssh (only keyauth)
48. # rsync://user@other.host[:port]/relative_path
49. # rsync://user@other.host[:port]//absolute_path
50. # # for the s3 user/password are AWS_ACCESS_KEY_ID/AWS_SECRET_ACCESS_KEY
51. # s3://[user:password]@host/bucket_name[/prefix]
52. # s3+http://[user:password]@bucket_name[/prefix]
53. # # scp and sftp are aliases for the ssh backend
54. # ssh://user[:password]@other.host[:port]/some_dir
55. # tahoe://alias/directory
56. # webdav[s]://user[:password]@other.host/some_dir
57. # ATTENTION: characters other than A-Za-z0-9.-_.~ in user,password,path have
58. # to be replaced by their url encoded pendants, see
59. # http://en.wikipedia.org/wiki/Url_encoding
60. # if you define the credentials as TARGET_USER, TARGET_PASS below
61. # duply will url_encode them for you
62. #TARGET='scheme://user[:password]@host[:port]/[/]path'
63. TARGET='s3://s3-eu-west-1.amazonaws.com/X/Y'
64. # optionally the username/password can be defined as extra variables
65. # setting them here _and_ in TARGET results in an error
66. #TARGET_USER='_backend_username_'
67. #TARGET_PASS='_backend_password_'
68. TARGET_USER='XX'
69. TARGET_PASS='XX'
70.  
71. # base directory to backup
72. SOURCE='/'
73.  
74. # a command that runs duplicity e.g.
75. # shape bandwidth use via trickle
76. # "trickle -s -u 640 -d 5120" # 5Mb up, 40Mb down"
77. #DUPL_PRECMD=""
78.  
79. # exclude folders containing exclusion file (since duplicity 0.5.14)
80. # Uncomment the following two lines to enable this setting.
81. #FILENAME='.duplicity-ignore'
82. #DUPL_PARAMS="$DUPL_PARAMS --exclude-if-present '$FILENAME'"
83.  
84. # Time frame for old backups to keep, Used for the "purge" command.
85. # see duplicity man page, chapter TIME_FORMATS)
86. MAX_AGE=3M
87.  
88. # Number of full backups to keep. Used for the "purge-full" command.
89. # See duplicity man page, action "remove-all-but-n-full".
90. MAX_FULL_BACKUPS=3
91.  
92. # Number of full backups for which incrementals will be kept for.
93. # Used for the "purge-incr" command.
94. # See duplicity man page, action "remove-all-inc-of-but-n-full".
95. MAX_FULLS_WITH_INCRS=3
96.  
97. # activates duplicity --full-if-older-than option (since duplicity v0.4.4.RC3)
98. # forces a full backup if last full backup reaches a specified age, for the
99. # format of MAX_FULLBKP_AGE see duplicity man page, chapter TIME_FORMATS
100. # Uncomment the following two lines to enable this setting.
101. MAX_FULLBKP_AGE=1M
102. DUPL_PARAMS="$DUPL_PARAMS --full-if-older-than $MAX_FULLBKP_AGE "
103.  
104. # sets duplicity --volsize option (available since v0.4.3.RC7)
105. # set the size of backup chunks to VOLSIZE MB instead of the default 25MB.
106. # VOLSIZE must be number of MB's to set the volume size to.
107. # Uncomment the following two lines to enable this setting.
108. VOLSIZE=250
109. DUPL_PARAMS="$DUPL_PARAMS --volsize $VOLSIZE "
110.  
111. # verbosity of output (error 0, warning 1-2, notice 3-4, info 5-8, debug 9)
112. # default is 4, if not set
113. #VERBOSITY=5
114.  
115. # temporary file space. at least the size of the biggest file in backup
116. # for a successful restoration process. (default is '/tmp', if not set)
117. #TEMP_DIR=/tmp
118.  
119. # Modifies archive-dir option (since 0.6.0) Defines a folder that holds
120. # unencrypted meta data of the backup, enabling new incrementals without the
121. # need to decrypt backend metadata first. If empty or deleted somehow, the
122. # private key and it's password are needed.
123. # NOTE: This is confidential data. Put it somewhere safe. It can grow quite
124. # big over time so you might want to put it not in the home dir.
125. # default '~/.cache/duplicity/duply_<profile>/'
126. # if set '${ARCH_DIR}/<profile>'
127. #ARCH_DIR=/some/space/safe/.duply-cache
128.  
129. # DEPRECATED setting
130. # sets duplicity --time-separator option (since v0.4.4.RC2) to allow users
131. # to change the time separator from ':' to another character that will work
132. # on their system. HINT: For Windows SMB shares, use --time-separator='_'.
133. # NOTE: '-' is not valid as it conflicts with date separator.
134. # ATTENTION: only use this with duplicity < 0.5.10, since then default file
135. # naming is compatible and this option is pending depreciation
136. #DUPL_PARAMS="$DUPL_PARAMS --time-separator _ "
137.  
138. # DEPRECATED setting
139. # activates duplicity --short-filenames option, when uploading to a file
140. # system that can't have filenames longer than 30 characters (e.g. Mac OS 8)
141. # or have problems with ':' as part of the filename (e.g. Microsoft Windows)
142. # ATTENTION: only use this with duplicity < 0.5.10, later versions default file
143. # naming is compatible and this option is pending depreciation
144. #DUPL_PARAMS="$DUPL_PARAMS --short-filenames "
145.  
146. # more duplicity command line options can be added in the following way
147. # don't forget to leave a separating space char at the end
148. #DUPL_PARAMS="$DUPL_PARAMS --put_your_options_here "