Home page logo
/

basics logo Security Basics mailing list archives

Re: Disaster Recovery Plan
From: "Coward, Robert (Contractor)" <Robert.Coward () deploymenthealth osd mil>
Date: Fri, 25 Jun 2004 07:38:26 -0400


I think you could use Tripwire for something like that. I know they have
something called a golden baseline. Also if your systems were SUN based
they have a new type of filesystem? SAM-FS and QFS. I thin they have the
ability to create an image of a machine to any place on the network, HD,
tape, SAN, etc.

---
25 June 2004
"Theology, by diverting the attention of men from this life to another, and
by endeavoring to coerce all men into one religion, constantly preaching
that this world is full of misery, but the next world would be beautiful --
or not, as the case may be -- has forced on men the thought of fear where
otherwise there might have been the happy abandon of nature." (Elbert
Hubbard, 1856-1915)
---
Robert V. Coward
UNIX System Administrator
Computer Science Corporation






Matthew Crape <ka55ad () gmail com> on 06/23/2004 04:00:16 PM

To:   "Holmes, Brian" <brian.holmes () corelab com>
cc:   security-basics () securityfocus com

Subject:  Re: Disaster Recovery Plan


Thanks for the response. I was looking for software and so forth to
use. I would like to have something like a Symantec Ghost server which
can create a ghost image over the network nightly of all the servers,
but the key would to be have no downtime. Right now we use Tapeware
for the tape backup and it can make full backups when the systems are
up and running. If I could find something very similar to image the
hard drives onto a remote NAS or something, that would put my mind at
ease. Lets face it, restoring an image created the night before is
preferable to restoring a master tape, and then the differential. Just
the time difference alone would presumably be beneficial.

As far as hardware and OS goes - its all AMD machines running Win2k
Server and a HP tape drive.

On Wed, 23 Jun 2004 14:47:41 -0500, Holmes, Brian
<brian.holmes () corelab com> wrote:

What you described sounds more like a "backup strategy" which is
incorporated into a DRP. The DRP itself should be based on priority and
risk levels.

1st step:
Assess the computing environment and determine the acceptable risks
and/or downtime (e.g. how long the environment(s) could remain down w/o
significantly affecting the business?)

2nd step:
Document all the information required to "rebuild" the systems:
hardware, software, applications, system configuration, licenses, etc...

3rd step:
Prioritize the system restoration process, i.e. what systems should be
up first, etc... Since some systems are required to operate other
systems, consider this (e.g. must restore OS before loading Apps)

Note: Make sure to include the process for restoring the data - the
person who normally does this may not be available in a disaster, so
write clear and concise instructions.

4th step:
Test the plan...

Attempt to justify the costs of implementing and testing a solid DRP by
quantifying financial loss to management. For example, if the data
center was flooded, the company would lose all computing for 4 days. Due
to the nature of our business, this could costs us over $1,000,000.
Therefore, it is in our best interests to invest in a solid DRP.


Brian Holmes
IT Business Analyst
Core Laboratories
phone: (713) 328-2679
fax:     (713) 328-2901
bholmes () corelab com


-----Original Message-----
From: ka55ad [mailto:ka55ad () gmail com]
Sent: Tuesday, June 22, 2004 8:53 AM
To: security-basics () securityfocus com
Subject: Disaster Recovery Plan

Although this might be slightly off topic, I was wondering if anyone
could give me some suggestions for some disaster recovery plans. Right
now we are a small place (less than 50 employees total), and I am not
comfortable with the current Disaster Recovery plan (it was created
before I came on board). It basically involves performing a master
backup on tape once a month and then doing a differential backup every
week night. We have 2 sets of differential tapes that we keep off site
and alternate every week, but the masters are not kept off site.

I am working with a very limited budget. Can anyone recommend a good
solution that will ease my worries? Thanks.

------------------------------------------------------------------------
---
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off
any course! All of our class sizes are guaranteed to be 10 students or
less
to facilitate one-on-one interaction with one of our expert instructors.

Attend a course taught by an expert instructor with years of
in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.

Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
----



---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less

to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------








---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]