Page 2 of 2 FirstFirst 12
Results 11 to 13 of 13

Thread: Best Practice for Protection of backups against ransomware 2019 ????

  1. #11
    Join Date
    Mar 2009
    Beans
    1,982

    Re: Best Practice for Protection of backups against ransomware 2019 ????

    Before you freak out about the price of an 8-16 core c3000 system, this system would also be able to be a VM host, allowing not just a very good file server but also a number of other things as well, whatever you need for a home or small office. The C3000 series can use 256 GB RAM if you go with ecc memory, and your board supports it.

    The Atom is a system-on-a-chip the same as ARM. So not only is there a processor, there is some other devices like the network interface or sata stuff. Mine has encryption and compression hardware acceleration, tagged as QuickAssist or QAT.

    The arguments I'm making for all this are:
    1. In order to make a decent backup system or NAS device, you need to buy a power supply, a case, drives, etc. Probably you need the same class of all that that you would use here.
    2. Virtualization utilizes the same hardware to implement several servers.
    3. A home or small office usually makes heavy use of one thing at a time, surrounded by long idle times for whatever service you're using.
    4. Virtualization allows you to have better performance for all your services because when you're heavily using your backup, for example, you are likely not heavily using some other service you might want.
    5. The c3000 series allowing more complete isolation of hardware devices for a specific VM would let you safely have, for example, a really good firewall/router as one of your VMs, and maybe IDS/IPS (intrusion detection/prevention systems) or a VPN.
    6. A backup system is architecturally almost the same as a NAS. You could make your device and implement a NAS with a removable cartridge like I said, then keep interesting data on that system, as well as an online copy of your most recent backup, and still take the real backup to a different location to provide protection from theft or fire or ransomware or whatever else.
    7. IMO an 8-core atom could do all that stuff very nicely. But it will cost you more than you had intended.

  2. #12
    Join Date
    Dec 2018
    Location
    Paris, France
    Beans
    12

    Re: Best Practice for Protection of backups against ransomware 2019 ????

    If I had something of this kind to manage, I'd probably work also on processes check. Unless a ransomware were able to get root, it would run from userland. At least, That's what I read about the discovered ones. A routine in bash script that checks any process running from userland (ps x | grep -v grep | grep -E '/home/|/var/tmp/|/tmp/|/dev/shm/') and kills it as soon as it's detected (and even checks and remove its contrab entry, etc.) before popping-up a warning could add a small layer of security, I think.

  3. #13
    Join Date
    Mar 2010
    Location
    Squidbilly-Land
    Beans
    Hidden!
    Distro
    Ubuntu

    Re: Best Practice for Protection of backups against ransomware 2019 ????

    This is why system monitoring is important. Lots of different methods for that from logwatch, IDS/IPS, alarming and performance data capture.

    But it all starts with versioned backups.

Page 2 of 2 FirstFirst 12

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •