curiojs
asked on
Back Up - Restore - General Security Plan
I have a project I am working on that entails two linux servers with 50 dumb terminals. One of the linux servers contains all of the applications and data and the other one is used for email and internet connectivity. There are about 100 users total, some of which access these servers remotely. I am trying to get some input on what might be the best backup device and/or software to use for this system and what some of the security risks are that need to be looked at other than the obvious (email virus, etc.) Trying to do an overall plan for this project. If you have any ideas on where to start please help. Thanks.
CurioJS
CurioJS
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area to:
Accept kyrmit's answer
Please leave any comments here within the next seven days.
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
majorwoo
EE Cleanup Volunteer
I will leave a recommendation in the Cleanup topic area to:
Accept kyrmit's answer
Please leave any comments here within the next seven days.
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
majorwoo
EE Cleanup Volunteer
per recommendation
SpideyMod
Community Support Moderator @Experts Exchange
SpideyMod
Community Support Moderator @Experts Exchange
The backup system uses cron to drive scripts that run overnight when the system is fairly stable and perform an incremental backup to directories on the backup machine. During the day the system administrator then uses BRU-16 to back these directories to DLT tape.
The advantages of this system are as follows :
> The backup from the target systems is done unattended at a quiet system time.
> The latest image of each system exists on disk on the backup machine so individual files can be recovered quickly if a user accidentally deletes a file.
> The tape backup can be done while staff are on hand to load tapes.
> The backup system gives an area on disk where backup tapes can be recovered to disk to ensure that the tapes are readable (your do test your backup tapes don't you!)
> The backup machine can be used by new sys admins to experiment with linux if need be.
The shared disks from the target systems are shared as read-only devices and the connections are made and dropped by the backup scripts. If files are to be restored from the backup system to the targets then the shares are manually changed to r/w for the duration of the restore process only.
This may not be the ideal system but it works for this installation and is relatively cheap.
Another place to look at for backup scripts etc is www.backup-central.com. Their hostdump.sh script is especially good (and free).
Above all - buy and read the O'Reilly volume - Unix Backup and Recovery - this is a must have volume for any sys admin and may well save your job and/or sanity.
Cheers - Gavin