Tag Archives: Windows

Multiple Backups? Why? Is it Time to add a Cloud Backup?

A reprint from the PC410 Security Newsletter:

Cloud Backup, Why now?

Cloud backup is a worthwhile addition to your backup choices. Here’s why: Security software doesn’t block new threats under three days old, surge suppressors can’t handle a direct lightning strike, and no one is ready for what they don’t expect. Damage to computers and your backup drives is going to happen, and there won’t be advance notice.

Different backup types and destinations offer protection against different threats, and have dramatically different restore times. Some protect the newest files, and can be up and running in 10 minutes after a disaster. Others protect everything EXCEPT the newest files, from more types of mayhem, but take multiple days for recovery.

These are instructions for small business and home users; large businesses have more options, like backing up systems to virtual computers for emulation of a failed computer while waiting for IT staff to configure new hardware.

WHAT to Backup?

You should have three copies of your data, on two different types of backup (drives, cloud, or DVD/BluRay disks), and one copy should be off-site. If you’re only running one kind of backup, you’re not protecting your data against the most-likely problems.

Modern backup software automatically grabs your document folders. Add the contents of folders on servers, and any project folders that aren’t already inside the ‘my documents’ folders. If you use DropBox or OneDrive for sharing files, set one system in your office to keep a full copy of those files, and include them in your backups, because cloud file-sharing isn’t immune to cryptoware.

And backup these items: Software license keys (scan them), software installation disks, especially of backup software (convert them to “ISO” files and setup a folder for them on your backup drives), and the invoices that establish warranties on your computer and office technology (scan these as well).

HOW to Backup?

Image Backups are a backup against drive failures and lightning strikes. This is the backup used to rebuild your system after a drive failure–it’s a snapshot of the entire drive. Some software offers this as either a drive backup or a system backup; when in doubt what a backup will do, ask the publisher.

Data Backup is a compressed copy of your data, usually documents and anything else inside the ‘My documents’ area, but not your software or operating system. Data Backups offer some protection against overwritten files and ransomware–there are multiple sets of data, and you can choose which to restore from.

File Sync is an automatic copy of your data. This backup saves time in getting your data running, because it can substitute for a file server, for a small number of users. Daily file sync to a network-attached storage device (NAS) is best. Continuous file sync is also an option, but that increases potential damage from ransomware, and provides no protection against human errors.

Cloud Backup, set for “continuous” backups, goes to a good service provider that keeps multiple file versions, as protection against cryptoware, and captures the most-recent files that may have changed since the last set of image backups and file syncs. Cloud backup can also save you from human errors, when you need an older version of a valuable document.

WHERE to Backup?

Cloud backup is protected from ransomware, but make sure the cloud company you choose can delete encrypted files for you, by date or by extension–ask the question, and if they can’t answer in plain language, take your business elsewhere. File Sharing services like OneDrive and Google Drive are not backups; they’re single-copy storage that ransomware sees as a folder that can be encrypted like any other folder. Don’t use them for backups.

Network-attached storage drives are for continuous or scheduled backups. With the right software, they offer protection against drive and computer failures. If you bolt them down in a hidden spot in your building, they can protect against data loss from technology theft. Some of these units are even fire-resistant. They aren’t immune to power problems, and won’t survive a direct-to-building lightning strike, but neither will the wiring of your building.

USB-connected ‘portable’ drives (small, no power cord), and ‘external’ drives (larger, with a power adapter), are for backing up and then locking up data, so they’re protection against burglars and lightning, and if off-site, floods, fire, and general mayhem. But as nothing done manually is reliable, they can’t be your only backup destination.

WHEN to Backup?

The standard question for backups is “How many days, hours, seconds, or months of data can you afford to lose?” Answer that, and plan accordingly. For an airline, one second of data loss is millions of dollars. For most small businesses, more than a few days of lost data may lead to financial trouble.

As a starting point for small business, try this:

  • Image backups once a month, automated, for each computer, to a NAS drive. If your software configuration only changes rarely, an image every three months is OK.
  • Data Backups, every weeknight, full backup once a week, and incremental (new files and changed files) for the rest of the week.
  • File Sync, weekdays, late in the day.
  • Cloud Backup, continuously.

On computers other than your file server, if all your data is going to the server, you can skip data backups and file sync, but in this case, create image backups at least quarterly of these machines. Check the location of data files from Outlook or Thunderbird; they should save to the file server so that they’re included in all backups.

Keep the last three complete sets of all these backups. Assume there’s corruption–there frequently is, and recovery of an older file set may be needed. In some cases, a failed backup is the first sign of hard drive trouble, so monitor the backups, and restore some files as a test. If there has been no test of your backups, you don’t have any backups. Always test.

Monitor your backups. All good backup software can email the results of a backup, either that it worked or that it failed. Usually, if it fails, the backup device didn’t turn back on after a power failure, or it’s full. That’s OK if you’ve got that email that tells you to check your backups.

Finally, if you’ve been carefully backing up for years, great! But look at the backup drive; if it’s a 240 Gb drive, it could be from 2004. Backup drives fail, and old drives are slow and erratic. If you are running one type of backup, to an old drive, it’s time to update.

Backup Glossary: Pick Two Types

by Jerry Stern
PC Systems Consultant, PC410.com
Westminster, Maryland

I’ve explained image backups here a few times, but a refresher is due: An image backup records the contents of an entire hard drive. It’s like a snapshot, so that if the drive stops working, the image can be copied back onto a replacement drive.

It’s a misleading term, because backup software products, mostly, don’t have that option. They each have a few options, and then the large-business products add more. It’s complex, but remember that two of these backup types are all you need, with one of them out of the building.

  • File Sync:  This is an uncompressed copy of a set of folders to a backup location. It’s a cheap version of replication, for documents only. For a very small network, the drive used as the backup can be switched into use as a very basic file server in a few minutes.
  • System Backup: Usually, this is a backup of Windows, the ‘C:’ partition, and documents and data stored in the default ‘Users’ folders. It doesn’t include the contents of other drive letters. This works as an image backup if the computer’s drive has no additional drive letters.

hard-drive-to-backup

  • Disk Backup: This is close to an image backup, but usually not reliable for bootable drives like C:, because not all backup software will restore the boot settings.
  • File Backup: Choose your folders. It’s a very targeted backup.
  • Replication: This is a virtual copy of a server, usually saved to a NAS/network-attached drive, or a SAN/storage-area-network (same thing, but more of them). When a server fails, the virtual copy can replace the original as an online (local or cloud) copy of the original server, and work well enough to make do until a new server can be put in place.
    Advantage over the other backup types: Speed, under 5 minutes downtime. Disadvantage: Cost: Around $200 per month for a single server, plus a pricey high-end network-attached drive.
  • Cloud Backup: That’s backup to backup servers on the internet, and it can run either nightly, or it can backup documents all day as you edit, and generally keeps multiple versions. Best for document backups, but not practical for image/system backups, because the volume of data to upload would be too large in most offices; it would use up all your data allowance on your internet connection, even on cable, which is usually limited to 250 Gb per month.

Way too many options, right? Again, most offices should pick two.

The choices are based on a few factors:

  • What risks you expect: Drive failures and cryptoware are the same problem, on one computer–everything is missing. Both require full-image backups and document backups. For a small network, replication of the file server is a better strategy.
  • What you back up: Documents and databases are handled in different ways, and the best backup for ‘nothing but spreadsheets’ is not adequate for a database.
  • How much you back up: How many users’ documents need to be backed up.
  • How much down time you can afford: How long until you need to be back in business after the lightning strike?
  • How many offices you have: Two offices can backup to each other, like a private cloud.
  • How much data you can afford to lose: If your answer is ‘one day of data entry’, nearly any nightly backup will work. If it’s ‘one second’ of work, you’re probably running a multi-national airline, and there are multi-continent real-time synchronization and automatic load-balancing and failure management systems for that, with more acronyms and unclear names.