Bacula-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Bacula-users] Bacula security

2013-06-29 10:30:04
Subject: [Bacula-users] Bacula security
From: Grant <emailgrant AT gmail DOT com>
To: bacula-users AT lists.sourceforge DOT net
Date: Sat, 29 Jun 2013 07:24:36 -0700 
I'm currently pushing backups from each system to a central backup
server via rdiff-backup.  However, I realized that push backups are
not safe because if one of the systems is compromised, the infiltrator
could delete all of that system's backups with a command like this:

rdiff-backup --remove-older-than 1s [email protected]::/path/to/backup

Pull backups don't seem secure because if the central server is
compromised, the infiltrator would have root read privileges on every
backed-up system and would thereby be able to gain root access to
those systems.

I don't have a clear understanding of how bacula works yet.  Can
anyone tell me if it has these vulnerabilities (or others)?

- Grant

------------------------------------------------------------------------------
This SF.net email is sponsored by Windows:

Build for Windows Store.

http://p.sf.net/sfu/windows-dev2dev
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • [Bacula-users] Bacula security, Grant <=
Previous by Date:  [Bacula-users] A peculiarity when running restores, Phil Stracchino
Next by Date:  [Bacula-users] Open Source Backup Conference 25th of September in Cologne, cfp now open, Bruno Friedmann
Previous by Thread:  [Bacula-users] A peculiarity when running restores, Phil Stracchino
Next by Thread:  [Bacula-users] Open Source Backup Conference 25th of September in Cologne, cfp now open, Bruno Friedmann
Indexes:  [Date] [Thread] [Top] [All Lists]