Submitted by giuliomagnifico t3_yvweup in technology
Fieos t1_iwh8wj7 wrote
Reply to comment by _bobby_tables_ in Australia to consider banning ransomware payments by giuliomagnifico
It really isn't, especially when you are talking in the amounts of petabytes of backup data. Plus, so much of it depends on how you were compromised...
You should have an action plan, you should have backups, but saying it is 'simple' is pretty specific to the company. But you are an Internet badass, I get it.
nvrmor t1_iwhtdku wrote
>internet badass, I get it.
You don't need to insult people. You could, you know, provide evidence to support your claim...
Fieos t1_iwhzqr0 wrote
Okay, sure.
- Source 20+ year IT veteran specializing in the private cloud computing areas of business continuity, disaster recovery, and cyber-threat resiliency.
People often think, "I have backup... I'm good."
How do you know if your backups aren't also compromised? Are you scanning for metadata changes in your archive? If your infrastructure was targeted, do you have a recovery plan for all your data center services? DNS/NTP/LDAP/SMTP/PKI/etc?
Do your business processes aligned to report and communicate internally (and possibly externally) in the event of a security breach? If you are compromised and recovering to an alternate restore target... do you have your VIPs configured to handle the new locale?
Do you have all your binaries for a site rebuild onsite in a vault and are all your runbooks current? Have you actually even tested restores?
Say you are recovering from backup and everything else is good? What is your throughput to get your data back on disk?
If your data is encrypted by a third party, what's the plan? If the data is already outside of the environment... what's the plan?
None of this is simple at scale.
nvrmor t1_iwi0d0v wrote
yeah but what if you just used a backup?
_bobby_tables_ t1_iwhzw9i wrote
Wait. I was happy to be called an internet badass. I read no sarcasm at all into that.
Fieos t1_iwi7jso wrote
I will continue to dub thee with the highest level of Internet badassery, even if /u/nvrmor stands in the way.
nvrmor t1_iwi9kpj wrote
pfft you wouldn't know internet badass if it fragged you straight in the face. I ran gentoo in 2002 and have written DOZENS of bash scripts. All you need is a little rsync to stop ransomware and it doesn't take 2 braincells to figure that out genius jeez
Fieos t1_iwicibm wrote
Come at me bro... I still mostly remember my ICQ number.
Viewing a single comment thread. View all comments