<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#ffffff">
Hi Matthew,<br>
<br>
Upon re reading my post, I noticed that my description was a bit
vague. I'm mainly worried about the potential of a virus on the client
machines that are being backed up. I am pretty paranoid and take steps
to prevent this. However, say it happened. So, the client gets a
virus, the virus attaches to the remote nas, and the virus deletes the
partitions, etc.<br>
<br>
What you're describing sounds interesting but expensive. I have a VERY
minimal budget at the moment. How much would something like that cost
not including the hard drives?<br>
<br>
Also, what software would run on the client PC's and how would it talk
to the NAS? How would we prevent things other than the backup software
from accessing the backup partition on the NAS in write mode?<br>
<br>
It would be OK if there was another partition that was accessible for
general data storage.<br>
<br>
Sincerely,<br>
<br>
Ron<br>
<br>
<br>
<br>
On 1/8/2013 8:55 PM, Matthew wrote:
<blockquote
cite="mid:CAHc5b78_s6Mj44LimHK2d=Ffq0wspV9aTHfXYw1FQ6-6gOwfTw@mail.gmail.com"
type="cite">I can build a centos 6 disc that should do that. you can
look into a dedicated NAS box, which usually has its own prop OS, or
freenas/nas-lite. <br>
<br>
On building an OS, you will want to setup selinux, aide, anti-virus,
etc. and lock down the permissions. My scripts that I have for that,
can help, but if you go with something newer like fedora/ubuntu builds,
I am not sure they will. Setup PAM and other services to lock things
down. Actually one of my NAS systems here is a debian 6 box, but all
others are custom built centos. I do IA for a living, so that's why the
heavy rhel background.<br>
<br>
<br>
<div class="gmail_quote">On Tue, Jan 8, 2013 at 8:31 PM, Ron Frazier
(ALE) <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:atllinuxenthinfo@techstarship.com" target="_blank">atllinuxenthinfo@techstarship.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote"
style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hi
all,<br>
<br>
I'm considering making a mini nas to run backups on here at home. It
would probably have 2 - 4 TB of storage. My router has 1 USB port, so
I could just attach a HDD to that. Or, I could get something like a
Buffalo Link Station which holds two drives and attaches to the router.<br>
<br>
The main concern I've always had about having backup media attached all
the time is that, if a virus got into the machine, it could attack and
wipe out the backup drive.<br>
<br>
So, I need to know how to make a virus proof nas, such that at least
one partition on the device is accessible only to the backup software
for write mode. I don't care if everything can read the backup file,
but I only want the backup software to be able to add new files, write
to them, or delete them.<br>
<br>
I need something that can run while Windows 7 is running and backup
using the volume shadow copy service. I also need it to be able to
back up the ext4 Ubuntu partition on the PC's HDD, either by reading
the native file system or by using a sector by sector approach. This
way, I can just let the backups run periodically on their own and not
worry about malware affecting the backup.<br>
<br>
Any help is appreciated.<br>
<br>
Sincerely,<br>
<br>
Ron<br>
<br>
<br>
--<br>
<br>
Sent from my Android Acer A500 tablet with bluetooth keyboard and K-9
Mail.<br>
Please excuse my potential brevity.<br>
<br>
(To whom it may concern. My email address has changed. Replying to
former<br>
messages prior to 03/31/12 with my personal address will go to the wrong<br>
address. Please send all personal correspondence to the new address.)<br>
<br>
(PS - If you email me and don't get a quick response, you might want to<br>
call on the phone. I get about 300 emails per day from alternate energy<br>
mailing lists and such. I don't always see new email messages very
quickly.)<br>
<br>
Ron Frazier<br>
770-205-9422 (O) Leave a message.<br>
linuxdude AT <a moz-do-not-send="true" href="http://techstarship.com"
target="_blank">techstarship.com</a><br>
<br>
<br>
_______________________________________________<br>
Ale mailing list<br>
<a moz-do-not-send="true" href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a moz-do-not-send="true"
href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a moz-do-not-send="true"
href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
</blockquote>
</div>
<br>
<br clear="all">
<br>
-- <br>
SimonTek<br>
912-398-6704<br>
<pre wrap="">
<fieldset class="mimeAttachmentHeader"></fieldset>
_______________________________________________
Ale mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Ale@ale.org">Ale@ale.org</a>
<a class="moz-txt-link-freetext" href="http://mail.ale.org/mailman/listinfo/ale">http://mail.ale.org/mailman/listinfo/ale</a>
See JOBS, ANNOUNCE and SCHOOLS lists at
<a class="moz-txt-link-freetext" href="http://mail.ale.org/mailman/listinfo">http://mail.ale.org/mailman/listinfo</a>
</pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">--
(To whom it may concern. My email address has changed. Replying to former
messages prior to 03/31/12 with my personal address will go to the wrong
address. Please send all personal correspondence to the new address.)
(PS - If you email me and don't get a quick response, you might want to
call on the phone. I get about 300 emails per day from alternate energy
mailing lists and such. I don't always see new email messages very quickly.)
Ron Frazier
770-205-9422 (O) Leave a message.
linuxdude AT techstarship.com
</pre>
</body>
</html>