> > I can recommend Restic over Rclone over SSH for limited, append-only > access. > > Thank you Stefan. restic seems to be a very interesting solution. I also came > across rustic. How do you feel about it (if you have experience with it)? In > theory, rust is nice, but it's newer software, so might be less tested.
AFAIK Rustic is a drop-in replacement for Restic, with some additional features such as built-in support for append-only snapshots. I haven't used it so far. > > Alternatively, you can use the Restic REST Server > > I like this option, thanks for pointing it out. Do you have a sense of > whether it's more or less secure than the SSH option? Again, from the > perspective of considering the client to be a motivated attacker trying to > compromise the server via their access. I'd say it has a different attack surface, not necessarily smaller. The practical difference is more in the client setup. Not having to set up SSH clients may be simpler, especially if you target Windows users. That said, I've used both approaches with BSD, Linux, macOS, and Windows for years without problems. Be aware that Restic may create excessively large cache directories on the client when checking or pruning repositories, which is not strictly necessary. You can easily check repositories on the server side without decrypting the blobs because they are named after their hash sum.
