一键在 Manus 中运行任何 Skill

linux-disaster-recovery

Restore from GPG-encrypted backups on Ubuntu/Debian servers. Covers MySQL database restore (single DB or full), app file restore, config snapshots, and emergency recovery checklist. Backups are AES256 GPG encrypted, stored locally and on Google Drive via rclone. Always confirms before any destructive restore.

在 Manus 中运行

概览

安装命令

npx skills add https://github.com/peterbamuhigire/linux-skills --skill linux-disaster-recovery

复制此命令并粘贴到 Claude Code 中以安装该技能

来源

peterbamuhigire/linux-skills

星标2

分支0

更新时间2026年4月13日 09:45

文件资源管理器

3 个文件

SKILL.md

readonly

同仓库更多 Skills

同仓库

linux-repo-sync

peterbamuhigire/linux-skills

Safely update git repositories on a server without ever destroying uncommitted local work. Defines the binding doctrine for any automated or menu-driven repo-update script — pull --rebase --autostash, porcelain dirty-checks, conflict recovery, never git reset --hard or git clean -fd. Load before writing, reviewing, or running any script that pulls repos on a managed server.

2026-05-312

linux-site-deployment

peterbamuhigire/linux-skills

Deploy a new website to an Ubuntu/Debian server running Nginx + Apache dual-stack. Interactive — asks domain name and site type (Astro static / PHP app / Astro+PHP hybrid), generates the correct Nginx config, walks the full 8-step deployment, issues SSL, and registers the repo in update-all-repos.

2026-05-312

linux-sysadmin

peterbamuhigire/linux-skills

Linux server management hub for Ubuntu/Debian production servers. Use for any server management task — security analysis, hardening, services, deployment, monitoring, troubleshooting, disaster recovery, networking, mail, virtualization, secrets, observability. Routes to the right specialist skill.

2026-05-312

linux-access-control

peterbamuhigire/linux-skills

Manage users, groups, SSH keys, sudo access, and file permissions on Ubuntu/Debian servers. Create/delete users, manage sudo group, add/revoke SSH authorized_keys, audit who has access, fix file permissions in web roots and credential files.

2026-04-132

linux-bash-scripting

peterbamuhigire/linux-skills

Write interactive, secure, powerful Bash scripts for the linux-skills engine. Defines the canonical script template, the common.sh library contract, standard flags, interactive UX rules, and safety patterns every `sk-*` script must follow. Use before writing or reviewing any script in this repo.

2026-04-132

linux-cloud-init

peterbamuhigire/linux-skills

Design, validate, and debug cloud-init user-data and Ubuntu autoinstall configurations. Use when bootstrapping fresh servers from YAML — first-boot package installs, user creation, SSH keys, network config, and custom runcmd blocks.

2026-04-132

来源

peterbamuhigire

peterbamuhigire/linux-skills

打开 GitHub 仓库查看创作者相关仓库

安装命令

下载

在 Manus 中运行

适用职业SOC

网络与计算机系统管理员计算机与数学类职业15-1244L4

name	linux-disaster-recovery
description	Restore from GPG-encrypted backups on Ubuntu/Debian servers. Covers MySQL database restore (single DB or full), app file restore, config snapshots, and emergency recovery checklist. Backups are AES256 GPG encrypted, stored locally and on Google Drive via rclone. Always confirms before any destructive restore.
license	MIT
metadata	{"author":"Peter Bamuhigire","author_url":"techguypeter.com","author_contact":"+256784464178"}

Disaster Recovery

Use when

Data has been lost, corrupted, or overwritten and a restore may be required.
You need to recover databases, application files, or config snapshots from backups.
You need an emergency recovery checklist during a production incident.

Do not use when

The problem is only a service outage or bad config that can be fixed in place; use linux-service-management or linux-troubleshooting.
The task is a routine backup review rather than an actual restore path.

Required inputs

The incident time window and affected data set.
The candidate backup location, timestamp, and encryption details.
Explicit confirmation that a destructive restore is acceptable.

Workflow

Confirm this is true data loss or corruption, not a recoverable service issue.
Locate the newest safe backup from before the incident.
Follow the matching restore path and confirm destructive impact before execution.
Verify service health, data integrity, and post-restore access before closing the incident.

Quality standards

Restore the smallest correct scope first when possible.
Use timestamps and incident facts to choose the backup, not guesswork.
Verification after restore is mandatory.

Anti-patterns

Restoring over live data without explicit confirmation.
Choosing the latest backup without checking whether it already contains the bad state.
Ending the incident after the restore command without service and data validation.

Outputs

The selected backup and restore path.
The recovery commands and confirmations required.
A post-restore verification summary with any remaining risk.

References

This skill is self-contained. Every command below works on a stock Ubuntu/Debian server. The sk-* scripts in the Optional fast path section at the bottom are convenience wrappers — never required.

Always confirm before restoring. A restore overwrites existing data. Never start a restore without typing the full word yes at the prompt, even in non-interactive mode.

Step 1: Assess First

# Is this a service crash (restart only) or actual data loss?
sudo systemctl status nginx mysql postgresql php8.3-fpm

# When did it happen?
sudo journalctl --since "2 hours ago" | grep -iE "error|fail|crash" | head -20

Service crash → restart it (linux-service-management), no restore needed. Data loss/corruption → proceed below.

Step 2: Find The Right Backup

# Local backups (7-day retention)
ls -lth ~/backups/mysql/*.gpg 2>/dev/null | head -10

# Google Drive (3-day retention for MySQL)
rclone ls gdrive:<backup-folder> 2>/dev/null | sort | tail -10

# If rclone token expired:
rclone config reconnect gdrive:

Choose the backup closest to before the incident.

Step 3: Restore

Full restore procedure (decrypt → extract → import): See references/restore-procedures.md.

The procedure, condensed:

# Decrypt (enter passphrase when prompted)
gpg --decrypt backup.sql.gz.gpg > backup.sql.gz

# Inspect size and sanity
gunzip -l backup.sql.gz
zcat backup.sql.gz | head -20

# Stop the service that writes to the DB
sudo systemctl stop nginx apache2 php8.3-fpm

# Restore (confirm first!)
zcat backup.sql.gz | mysql -u root -p <database>

# Restart
sudo systemctl start php8.3-fpm apache2 nginx

Emergency Checklist

# 1. Stop affected service to prevent further damage
sudo systemctl stop <service>

# 2. Find best backup (Step 2 above)

# 3. Decrypt → restore → verify (references/restore-procedures.md)

# 4. Restart all services
sudo systemctl start nginx mysql php8.3-fpm apache2

# 5. Re-run security audit
sudo bash ~/.claude/skills/scripts/server-audit.sh

# 6. Clean up
rm -rf ~/restore/

Demo/Dev Reset (Git-Tracked SQL Dump Pattern)

Some apps ship a git-tracked SQL dump as the demo DB source of truth. A reset script drops and recreates from that dump:

ls /usr/local/bin/reset-*           # find available reset scripts
sudo reset-<app>-from-git           # requires typing YES
ls /var/backups/<app>/              # safety backup always created first

Optional fast path (when sk-* scripts are installed)

Running sudo install-skills-bin linux-disaster-recovery installs wrappers for the above:

Task	Fast-path script
Verify last backup is usable	`sudo sk-backup-verify`
Guided restore (pick backup, preview, confirm)	`sudo sk-restore-wizard`
MySQL restore from a specific file	`sudo sk-mysql-restore --file <path>`
PostgreSQL restore	`sudo sk-postgres-restore --file <path>`
Site file restore	`sudo sk-site-restore --backup <path> --target <dir>`
Maintenance mode on/off	`sudo sk-emergency-mode on\|off`

These are optional wrappers around the commands above.

Demo/Dev Reset (Git-Tracked SQL Dump Pattern)

Some apps ship a git-tracked SQL dump as the demo DB source of truth. A reset script drops and recreates from that dump:

ls /usr/local/bin/reset-*           # find available reset scripts
sudo reset-<app>-from-git           # requires typing YES
ls /var/backups/<app>/              # safety backup always created first

Scripts

This skill installs the following scripts to /usr/local/bin/. To install:

sudo install-skills-bin linux-disaster-recovery

Script	Source	Core?	Purpose
sk-backup-verify	scripts/sk-backup-verify.sh	yes	Verify last backup age, integrity (tar/gpg check), remote copy reachable via rclone.
sk-mysql-backup	scripts/sk-mysql-backup.sh	yes	Dump all databases with gzip + gpg + rclone upload; rotate local and remote. Refactored to source common.sh and honor standard flags.
sk-mysql-restore	scripts/sk-mysql-restore.sh	no	Guided restore: list backups, pick, download, decrypt, show sizes, confirm, restore.
sk-postgres-backup	scripts/sk-postgres-backup.sh	no	`pg_dump` + compression + gpg + rclone, per database or all, with rotation.
sk-postgres-restore	scripts/sk-postgres-restore.sh	no	Guided PostgreSQL restore from backup file or remote.
sk-site-backup	scripts/sk-site-backup.sh	no	Tar a full site directory, exclude cache/node_modules, gpg, upload via rclone.
sk-site-restore	scripts/sk-site-restore.sh	no	Restore a site backup to original path with permission repair.
sk-config-snapshot	scripts/sk-config-snapshot.sh	no	Snapshot `/etc/` (and other declared dirs) to a git-tracked archive; diff against previous.
sk-restore-wizard	scripts/sk-restore-wizard.sh	no	Interactive guided restore: pick backup set, pick target, preview, confirm, execute.
sk-emergency-mode	scripts/sk-emergency-mode.sh	no	Toggle maintenance mode: drop Nginx to 503 page, stop non-essential services, show live status.