it’s a systemd unit on my side, so i’ve got logging and potential to implement reporting if i desired, but frankly it’s not worth the effort, i just check to see if the drives have roughly the same data on them every so often, because rsync is handling the rest for me, as well as systemd.
I should probably set up proper smart reporting, but i’m lazy and don’t want to setup and email server lol.
your main concern would be files. If you run something as your usual suspect user, that software can do pretty much whatever it feels like with files under those permissions, unless sandboxed.
Not quite malware, but if someone wanted to troll you a goof rm -rf isn’t hard.