Hi, as a security strategy against cryptolocker I would like to know if it is possible to set up SMB network shares, so that once the backup has been written it is unmodifiable for 2 weeks. after 2 weeks the files within this share become read-write. Thank you
Use snapshots
1 Like
ok, but with local snapshot I need at least to duplicate the NAS disk space…true ?
No. It would only duplicate if you got hit by a cryptolocker and allowed it to encrypt your entire dataset.
In which case, you just roll back and then it’s gone.
I show how to set it up in this video
1 Like
Agree with the use of snapshots and off-site data backup.
An occasional offsite backup that is not electrically connected to anything on top of that is a good last line of defense.
"ok, but with local snapshot I need at least to duplicate the NAS disk space…true ?
No - only blocks that change take up space
2 Likes
very thank you !
The video help me to known the snapshot behaviour
1 Like
Configuring backup system to pull from the primary rather than having primary push to backup is a good idea as well (and make sure your primary isn’t storing SSH credentials for the backup).
3 Likes