Thanks for the plugin! This is close to what I need, but has a few serious issues that will fortunately be easy to fix.
- Backups should not be publicly available: currently the latest backup is freely-downloadable in the uploads directory by anyone who can guess the filename... which isn't hard, since it's just a timestamp. It's easy for a cracker to write a script to try the 1440 possibilities in a given day, and that's that.
- Don't leave tar files uncompressed: a tar file has no compression at all - but it's easy to make tar.gz (or name them .tgz) files instead by just including "z" in your tar options to gzip the tarball.