12tb+ of data and hoping to use it to periodically backup the data of numerous machines.

  • OhMyForm@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    There’s a bunch of people in this thread, who seem a little bit too goofy to figure out that you were just asking how did defend against RansomWare basically find something that uses snapshots

  • mxafi@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Assuming you actually want a NAS and not cold storage, I’d recommend at least some kind of raid to account for disk failure.

    As for ransomware protection, one decent solution is snapshots and limiting every client to only be allowed access to their own backup directory, or a limited set of directories in general on the NAS, as well as no execution permissions in those directories.

    If you’re concerned about the NAS being directly infected by a malicious user with direct access and execute permissions, the only real solution is offsite or cold storage backups.

  • matt95110@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Maybe you could try encrypting a volume that you will only use for backups and leave it unmounted when you aren’t using it?

  • ElevenNotes@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    3-2-1-1-0 backup rule and you don’t have to worry about randsomware. Can’t encrypt what is offline.

    • Trashrascall@alien.topOPB
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Any advice on the ‘0’ in practice? What’s the best way to ensure the files are free of error?