Great idea. Especially the last downtime give a reminder that this is very important.distributed offsite backups?
Security wise this is problematic.distributed offsite backups?
We will need quite heavy replication for this, since this would be a hobbyist project. No reliable uptimes or the VMs might just "dissapear".I believe if the backup are fragmented, encrypted and distributed into different area. Only the main source know where are they. Its actually quite secure.
Even the compute node owner owning that segment of files also cant do anything.
Execution is of no issue if we are only talking about a distributed filesystem of some sort. Plus like Dk3 noted. It's wrong to assume we can make multi-gb sized backups on an hourly base though.Security wise this is problematic.
If the database is backed up, there's a chance that someone with access to the backup can extract credentials, mail addresses and other potentially sensitive information.
It's an interesting idea, but it seems to me that there are too many things that can go wrong.
Severe hypervisor vulnerabilities (like XSA-108) is just one thing, who knows what else one could do? (ARP spoofing on local network to redirect traffic comes to mind).
So we can do with a single Netflix accountIdea.. global content delivery system...