Results 1 to 22 of 22

Thread: backup solution

  1. #1
    Join Date
    Mar 2009
    Posts
    2,735

    backup solution

    Hi,

    i install cpanel on centos,

    and use cpanel's backup solution to backup to the 2nd HD in the midnight,

    i want to ask if any better solution to backup ?

    i hope it may backup everyday or weekly to other server by account or remote all the server,

    hope it can increase the security and do not need spend many time to setup or manage it.


    thanx

  2. #2
    Join Date
    Jul 2007
    Posts
    2,050
    R1Soft's CDP is definitely the best alternative.
    Prashant T.

    Don't run after Success. Run after Excellence and Success will soon follow.

  3. #3
    Join Date
    Mar 2002
    Location
    UK
    Posts
    1,262
    Alternative off-site backup is available through BQBackup or one of their resellers.

  4. #4
    Join Date
    Jun 2006
    Location
    London, Arizona, Utah
    Posts
    654
    R1Soft's CDP as mentioned here is pretty safe from what I've seen
    General Manager, 100TB
    100TB.com -> 21 Datacenter Locations

  5. #5
    Join Date
    May 2008
    Posts
    340
    You can use offshore backup solutions such as http://rsync.net/
    Twitter : http://twitter.com/eth1networks
    Contact Us : support[at]eth1.in

  6. #6
    Join Date
    Oct 2004
    Location
    Kerala, India
    Posts
    4,750
    Have a check at BqBackup

  7. #7
    Join Date
    Mar 2009
    Posts
    2,735
    about R1Soft's CDP,is any way to get lower price ?


    thanx

  8. #8
    Quote Originally Posted by ttgt View Post
    i want to ask if any better solution to backup?
    Figure out first what type of backups you want; then look for a solution with those characteristics. I wrote a WHTwiki page about this a while back: http://www.webhostingtalk.com/wiki/Backups
    Dr. Colin Percival, FreeBSD Security Officer
    Online backups for the truly paranoid: http://www.tarsnap.com/

  9. #9
    http://backuppc.sourceforge.net is the best solution
    http://www.sibername.com

    Sibername Canadian Domain Name and Web Site Hosting Services
    Register with Sibername.com - an ICANN/CIRA/EURID Accredited Registrar

  10. #10
    Join Date
    Feb 2004
    Location
    USA
    Posts
    1,571
    Quote Originally Posted by timofeev View Post
    http://backuppc.sourceforge.net is the best solution
    Thanks for the link, will need to try this backuppc, it looks very nice.

    I can recommend you www.r1soft.com

  11. #11
    Quote Originally Posted by timofeev View Post
    http://backuppc.sourceforge.net is the best solution
    That's a rather dramatic claim. I've always found that the best solution depends on the problems one is trying to solve, and thus varies from person to person.
    Dr. Colin Percival, FreeBSD Security Officer
    Online backups for the truly paranoid: http://www.tarsnap.com/

  12. #12
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,080
    Keep in mind if you are trying for a secure method that if you are doing remote backups have the backup be pulled from the remote backup server - not pushed. The main server should not have any access to the backup server, that will help in the event the main server gets compromised.
    John W, CISSP, C|EH
    MS Information Security and Assurance
    ITEagleEye.com - Server Administration and Security
    Yawig.com - Managed VPS and Dedicated Servers with VIP Service

  13. #13
    Quote Originally Posted by eth00 View Post
    Keep in mind if you are trying for a secure method that if you are doing remote backups have the backup be pulled from the remote backup server - not pushed. The main server should not have any access to the backup server, that will help in the event the main server gets compromised.
    This depends how your backup server is configured. If you copy backups across via scp, then sure, a compromised system will be able to destroy its backups -- but with a secure backup system which requires separate credentials for creating vs. deleting archives, a system can be set up to automatically store backups without an attacker being able to destroy them.

    The option you suggest -- having the backup server pull data from your live server -- is in my opinion a dangerous approach which should be avoided whenever possible, since it concentrates complexity on the system which is least defensible.
    Dr. Colin Percival, FreeBSD Security Officer
    Online backups for the truly paranoid: http://www.tarsnap.com/

  14. #14
    Quote Originally Posted by TheServerExperts View Post
    Thanks for the link, will need to try this backuppc, it looks very nice.

    I can recommend you www.r1soft.com
    I have used both r1 and backuppc
    r1 has few nice features like cpanel integration, mysql backups etc but in most cases backuppc is the best choice because it is easy to use and open source
    http://www.sibername.com

    Sibername Canadian Domain Name and Web Site Hosting Services
    Register with Sibername.com - an ICANN/CIRA/EURID Accredited Registrar

  15. #15
    Join Date
    Feb 2005
    Location
    Australia
    Posts
    5,842
    Quote Originally Posted by cperciva View Post
    The option you suggest -- having the backup server pull data from your live server -- is in my opinion a dangerous approach which should be avoided whenever possible, since it concentrates complexity on the system which is least defensible.
    Can you explain this in more detail? To me, the system which is least defensible must be the live server - the backup system can be highly secured. So having the live server store its backups only locally and then using the backup server to pull them over seems both simpler and more secure.
    Chris

    "Some problems are so complex that you have to be highly intelligent and well informed just to be undecided about them." - Laurence J. Peter

  16. #16
    Quote Originally Posted by foobic View Post
    Can you explain this in more detail? To me, the system which is least defensible must be the live server - the backup system can be highly secured.
    Yes, that's what I meant.

    Quote Originally Posted by foobic View Post
    So having the live server store its backups only locally and then using the backup server to pull them over seems both simpler and more secure.
    Simpler in terms of code, perhaps, but not in terms of things which can go wrong and introduce security problems. Having the backup server pull data from the live server requires that the live server
    • accept connections from the backup server
    • perform necessary authentication to figure out that it is the backup server which is connecting, and
    • perform necessary authorization checks to verify that the backup server isn't touching anything which shouldn't be touched.
    It's very easy to get one (or more) of those wrong.

    In contrast, having the live server push archives to the backup server puts the burden of authentication and authorization on the backup server where it is much easier to control.
    Dr. Colin Percival, FreeBSD Security Officer
    Online backups for the truly paranoid: http://www.tarsnap.com/

  17. #17
    Join Date
    Feb 2005
    Location
    Australia
    Posts
    5,842
    I suspect we may just have to agree to disagree about this but:
    Quote Originally Posted by cperciva View Post
    accept connections from the backup server
    In the cases I'm thinking of the live server typically will need to accept connections from anywhere.

    perform necessary authentication to figure out that it is the backup server which is connecting
    Key-based ssh authentication isn't enough?

    perform necessary authorization checks to verify that the backup server isn't touching anything which shouldn't be touched.
    Given that it's simply downloading backup files this is trivial to achieve using *nix file ownership and permissions. But even without this, you're talking about the less-secure, less trusted server being given the job of restricting access it will grant to the more-secure, trusted server - not the highest priority, IMO.

    I'm still with eth00 on this: I wouldn't want to give the live server any access to log into the secure backup server.
    Chris

    "Some problems are so complex that you have to be highly intelligent and well informed just to be undecided about them." - Laurence J. Peter

  18. #18
    Quote Originally Posted by foobic View Post
    I'm still with eth00 on this: I wouldn't want to give the live server any access to log into the secure backup server.
    You misunderstand me. I don't think that either server should ever be able to log in to the other as a normal user. There are far too many local-user vulnerabilities for that.

    To do this securely, you need to have a service set up which allows bits to be transferred (either pull or push) but does not allow arbitrary code execution -- and SSH is not the right way to do this.
    Dr. Colin Percival, FreeBSD Security Officer
    Online backups for the truly paranoid: http://www.tarsnap.com/

  19. #19
    Join Date
    Apr 2009
    Location
    whitehouse
    Posts
    656
    rsync would help here.
    Quote Originally Posted by cperciva View Post
    To do this securely, you need to have a service set up which allows bits to be transferred (either pull or push) but does not allow arbitrary code execution -- and SSH is not the right way to do this.
    James B
    EzeeloginSetup your Secure Linux SSH Gateway.
    |Manage & Administer Multiple Linux Servers Quickly & Securely.

  20. #20
    Quote Originally Posted by BarackObama View Post
    rsync would help here.
    Yes and no. Usually rsync is implemented over SSH, with the associated problems (or without encryption at all, which reduces the system security problems at the expense of vastly increasing the data security problems). But sure, done appropriately (say, rsync-over-stunnel) it's not too bad.

    Except, of course, that file synchronization is not backup. File synchronization solves the "damnit the drive just failed" problem, but not the "oops, I didn't mean to delete that" problem or the "I screwed up and want to revert to an old version of this" problem, since rsync will happily synchronize your mistakes.
    Dr. Colin Percival, FreeBSD Security Officer
    Online backups for the truly paranoid: http://www.tarsnap.com/

  21. #21
    Join Date
    Jan 2001
    Location
    Miami, FL
    Posts
    1,072
    Quote Originally Posted by prashant1979 View Post
    R1Soft's CDP is definitely the best alternative.
    we use r1soft now for a substantial amount of backups for our customers.

    If you have the extra cash and server... go with R1
    Biznesshosting, Inc. DBA VOLICO - Intelligent Hosting Solutions
    East Coast Enterprise Dedicated Servers and Miami Colocation.
    managed and unmanaged dedicated servers. High bandwidth colocation. Managed clusters.

  22. #22
    Join Date
    Jul 2007
    Posts
    2,050
    Quote Originally Posted by bizness View Post
    we use r1soft now for a substantial amount of backups for our customers.

    If you have the extra cash and server... go with R1
    What kind of pricing options and packages you have for your customers for the external backup?
    Prashant T.

    Don't run after Success. Run after Excellence and Success will soon follow.

Similar Threads

  1. Replies: 0
    Last Post: 08-06-2009, 02:38 PM
  2. Backup Solution?
    By punker101 in forum Dedicated Server
    Replies: 9
    Last Post: 07-28-2009, 07:10 PM
  3. Backup Solution
    By sql_kit in forum Other Reviews
    Replies: 1
    Last Post: 01-19-2004, 08:42 PM
  4. WHM Backup utility for remote Ftp server? What Server Backup Solution ?
    By wmac in forum Hosting Software and Control Panels
    Replies: 0
    Last Post: 01-28-2003, 11:38 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •