Comment on what if your cloud=provider gets hacked ?
MNByChoice@midwest.social 8 months ago
I wonder if the specifics of the hack would make backing up elsewhere fail. Possibly by spreading the hack to new machines.
In any case, testing backups is important.
kristoff@infosec.pub 8 months ago
I have been thinking the same thing.
I have been looking into a way to copy files from our servers to our S3 backup-storage, without having the access-keys stored on the server. (as I think we can assume that will be one of the first thing the ransomware toolkits will be looking for).
Perhaps a script on a remote machine that initiate a ssh to the server and does a “s3cmd cp” with the keys entered from stdin ? Sofar, I have not found how to do this.
Does anybody know if this is possible?