Bareos News

General

Explained: How Cyber Insurance Works and Why Backups Are Crucial

Cybersecurity insurance is still a relatively new product for many companies, but that is rapidly changing. In the event of a cyber attack including ransomware and data breaches, the insurance assists organizations in recovering from the attack. The idea is simple: if a company is targeted by hackers, the insurance policy provides financial assistance to help the company with the expenses arising from such an event. And in order to be eligible for this protection, businesses must demonstrate their commitment to implementing robust security measures.

Ensuring Compliance and Security with Supported Solutions

Let’s talk about open-source software, especially free (or community) versions like Bareos. Open-source software gives you a lot of flexibility and freedom – like they say, “Free as in free speech, not free beer.” But when you’re running a business, especially one dealing with sensitive data, just having freedom isn’t enough to protect you from data breaches, regulatory fines, or other compliance issues. Ensuring that your system is secure, reliable, and compliant with a range of cybersecurity regulations is not just a best practice – it’s essential.

The Bareos 24 release plan has been finalized

Bareos 24 will be released in November 2024.
The following features are planned to be part of the release:

Dedupable Storage Backend

This new storage backend stores the backup data in a format optimized for deduplication. This allows Bareos volumes to be deduplicated by storages and filesystems with deduplication support (like ZFS, VDO, btrfs and others). The new command line tool bdedupestimate can estimate the deduplication potential of existing backup volumes, helping users optimize their storage use.

Bareos at FrOSCon 2024 on August 17-18: Presentation of Bareos 23 and Outlook on Bareos 24

Bareos is excited to announce our participation in FrOSCon 2024, taking place on August 17-18 at the Bonn-Rhein-Sieg University of Applied Sciences in Sankt Augustin. Join us as Andreas presents the innovative features of Bareos 23 and provides an exclusive preview of the Bareos 24 roadmap. Alongside Jörg, we invite you to visit our booth for a chance to connect, exchange ideas, and engage in meaningful discussions. Don’t miss this opportunity to network with fellow open-source enthusiasts and explore the future of Bareos!

Modernizing the Bareos Integration in Relax-and-Recover (ReaR)

Overview of ReaR

Relax-and-Recover (ReaR) is an Open-Source disaster recovery and automated Linux bare metal restore solution that allows users to create a bootable rescue system and recovery media. It is highly adaptable and supports numerous backup solutions, ensuring that in the event of system failure, you can quickly and efficiently restore your data and system configurations.

Bareos: A Trusted Partner in ReaR

Bareos, an Open-Source backup solution, has been integrated into ReaR for many years. This partnership has proven its reliability, providing seamless backup and recovery operations. The continuous evolution of both ReaR and Bareos has made this integration indispensable for users who require robust disaster recovery strategies.

Bareos: A Sustainable Backup Solution

When discussing backup solutions, environmental impact might not be the first thing that comes to mind. However, with data centers playing a crucial role in our digital infrastructure, it’s essential to recognize their significant environmental footprint. Datacenters contribute substantially to global energy consumption and carbon emissions, making sustainable practices in data management more critical than ever.

The Guide to Data Backup Strategies for Businesses

The Guide to Data Backup Strategies for Businesses

In today’s digital age, data is the lifeblood of any business. Whether it’s customer information, financial records, or proprietary data, losing this information can be catastrophic. Implementing a robust data backup strategy is essential to safeguard your business against data loss, damage, and cyber threats. This guide will walk you through the key components of an effective backup strategy, with practical tips and insights to help you protect your critical data.

Github Issues replaces Mantis


The Bareos project will use GitHub Issues (instead of Mantis).

In 2012, the Bareos project was launched with a commitment to fostering close integration with the community and leveraging advanced automation services. However, a span of 10 years provides ample opportunity for evolution and innovation. Over the course of this decade, we have continuously adapted and modernized our infrastructure.

Among other changes, we have made significant advancements in the following areas:

Code:
Since the beginning, we have relied on git and GitHub as our code repository. Initially, we accepted contributions in the form of emails and patches. However, for some time now, we have exclusively transitioned to using Pull Requests, automated tests, and a structured review process.

Package Building:
Originally, our package building process relied heavily on the powerful https://openbuildservice.org/ for Linux packages. However, we had to resort to different approaches for other platforms. Therefore we have transitioned to using Jenkins, Build-Worker, and Docker containers for all platforms. This transition has been seamless for end-users, but it allows us to create packages for all our platforms within the same streamlined process. Additionally, this optimized process tailored for Bareos operates much faster.

Bugtracker:
Since our inception in 2012, we have utilized Mantis as our bug tracker, and for the most part, we were satisfied with its performance. However, due to a tighter integration with our other processes, we have decided to migrate to Github Issues in April 2024. We anticipate that this transition will result in a better integration of error reporting, development, and pull requests.

Support:
In addition to our internal processes, we utilize https://zammad.org as a ticketing system for customers with support contracts.


Ransomware Protection: How to Safeguard Your Data with Advanced Backup Solutions

Discover essential strategies for ransomware protection. Learn how Bareos backup solutions fortify your defenses against digital threats, ensuring your data’s security and accessibility.

In an era dominated by digital threats, ransomware emerges as a formidable adversary. This malicious software encrypts your files, effectively holding them hostage until a ransom is fulfilled. The threat it poses to both individuals and organizations is profound. Yet, the battle is not lost. Armed with the right strategies and tools like Bareos, securing your valuable data against ransomware is within reach. Ransomware encrypts the victim’s files, rendering them inaccessible. The perpetrators then demand a ransom for data restoration. It commonly infiltrates systems through phishing emails, malicious websites, and software vulnerabilities.

Essential Ransomware Protection Strategies:

1. Cybersecurity Awareness: Empower your team with the knowledge to identify phishing attempts and malicious links. Regular cybersecurity training enhances your first line of defense.

2. Advanced Security Software: Deploy security solutions encompassing antivirus, anti-malware, and firewall protections to destroy ransomware attempts.

3. Reliable Backups: Keep updated backups of critical data. Bareos backup solutions provide automated, secure backups that are pivotal for business continuity post-ransomware.

4. Software Updates: Ransomware exploits outdated software. Consistently updating your systems and applications fortifies your defenses.

5. Access Control: Limit access to essential data, applying the principle of least privilege to reduce risk.

6. Disaster Recovery Planning: A disaster recovery plan is indispensable. It should detail response actions for ransomware incidents, including data isolation and restoration.

7. Network Segmentation: Dividing your network limits ransomware spread, safeguarding sensitive data across various segments.

8. Email Security: Implement email filtering to eliminate phishing threats, a primary ransomware conduit.

Among all strategies for combating ransomware, regular backup is paramount. It is the only method that guarantees data recovery after an attack. Other preventative measures aim to block attacks, but they do not guarantee data recovery in the event of a breach. Regular, secure backups, using solutions like Bareos, safeguard your data by preserving it in its pre-attack state and making it recoverable in all scenarios. This not only enhances your defense, but also effectively renders ransomware demands ineffective, demonstrating backups as the ultimate defense in your data protection strategy.

Bareos is Your Ally in Ransomware Protection

Bareos leads in data protection, offering an adept backup and recovery system designed to counter ransomware. It automates your data backups with features like data encryption and effortless recovery, positioning Bareos as an indispensable ally in ransomware protection.

Facing ransomware doesn’t mean conceding defeat. With proactive strategies and dependable tools like Bareos, you can shield your data from threats and ensure operational resilience. It’s more than a technical safeguard—it’s a strategic business imperative.

Implement these protective measures today and take control of your data security.

Are you interested in bolstering your defenses with Bareos? Reach out us now to explore how our backup and recovery solutions can secure your data against ransomware and other cyber threats.


Bareos Applied as Mentoring Organization in Google Summer of Code 2024


Google Summer of Code (GSoC) and Mentor Organizations

GSoC, now in its 20th year, is a global, online program focused on bringing new contributors into open source software development. GSoC Contributors work with an open source organization on a 12+ week programming project under the guidance of mentors.

Bareos as a Mentoring Organization

In 2024, Bareos applied for the first time as mentoring organization for GSoC. Here’s why you should be excited:

  • Diverse Project Ideas: Bareos has curated a list of intriguing project ideas for GSoC 2024. From enhancing backup performance to improving user interfaces, there's something for everyone. Check out the project ideas list to explore the possibilities.
  • Welcoming Community: Bareos promotes a welcoming and inclusive community. The goal is to bring new contributors into the fold.

How to Get Involved

As Bareos steps into its role as a mentoring organization, we invite you to be part of this exciting journey. If you’re a student and an open-source enthusiast, GSoC 2024 is a great opportunity to develop various skills and get involved in an important open-source project.

The next step is to check our project ideas list at https://github.com/bareos/GSoC2024/. You can also propose your own project idea there.

Important Next Items on the GSoC 2024 Timeline

  • February 21 – 18:00 UTC: List of accepted mentoring organizations will be published
  • February 22 – March 18: Potential GSoC contributors discuss application ideas with mentoring organizations
  • March 18 – April 2: GSoC contributor application period

For more information about GSoC, visit https://summerofcode.withgoogle.com/

Enhance security by hardening the Bareos filedaemon

The Bareos filedaemon (client) runs per default with administrator/root privileges in order to be able to backup all files. The Filedaemon also is able to execute scripts before and after the backups and restores. In order to perform restores, the filedaemon has the ability to overwrite all files on the client machine. While all of this is required for normal backup and restore operation, certain environments might have higher security requirements.
Bareos offers the following options are available to enhance the security and limit the power of the filedaemon:

Favicon für den Browser
  • Limit the directories from where the filedaemon executes scripts. This can be achieved with the configuration directive Allowed Script Dir
  • Limit the Job Commands that the filedaemon accepts. The Allowed Job Command directive determines which of the existing job commands (backup, restore, verify, estimate and runscript) are allowed. By prohibiting the restore command, the filedaemon will not allow to do restores. Without the runscript command, no runscripts will be executed.
  • run the filedaemon as non-root user with the capabilities CAP_DAC_READ_SEARCH. This uses the Linux capabilities mechanism to run as normal user but have the the right to read all files. Writing files will not be possible in this setup.

These security measures can prevent an attacker that gained control over the bareos director to alter the files of the machines being backed up.
However, when a restore is required, the filedaemon on the client needs to be reconfigured to allow restores and/or runscripts. Alternatively, a second bareos filedaemon can be started that has a configuration that allows restores.

Usually the amount of restores is much smaller than the backups, so these measures still can enhance the security with relatively little effort and inconvenience.

Import and export tapes from your tape library with Bareos


Tape libraries usually offer an option to insert and remove tape cartridges. Therefore, the libraries have a number of dedicated slots (so called import/export slots or mail slots) that can be accessed from outside of the library without the danger of the operator to collide with the tape robot. Bareos supports this functionality with the bconsole commands import and export commands:

  • To import tapes into the library, just fill the import/export slots with the tapes and type import.
  • To export tapes from the library, use export volume=<volumename>
  • Tapes used by a job can be automatically exported with use of a runscript

For more details, please check the bconsole documentation about import and export console commands.

Bareos joins Open Invention Network

Bareos GmbH & Co. KG strengthens Commitment to Open Source Collaboration by Joining the Open Invention Network.

Bareos GmbH & Co. KG, a leading provider of open-source data backup and recovery solutions, proudly announces its membership in the Open Invention Network (OIN), underscoring the company’s dedication to fostering collaboration and innovation within the open-source community. The Open Invention Network is a shared defensive patent pool committed to protecting the open-source ecosystem. By joining this network, Bareos GmbH & Co. KG demonstrates its commitment to providing a secure and collaborative environment for developers, users, and partners.

Scroll to Top