News, guidelines and various community projects
[SEC-CVSS:3.1 9.8 / 8.5] Remote Procedure Call Runtime Remote Code Execution Vulnerability CVE-2022-26809
Hi guy update April 2022 for fix RPC vulCVE-2022-26809 - Security Update Guide - Microsoft - Remote Procedure Call Runtime Remote Code Execution VulnerabilityHow could an attacker exploit the vulnerability?To exploit this vulnerability, an attacker would need to send a specially crafted RPC call to an RPC host. This could result in remote code execution on the server side with the same permissions as the RPC service.Why did Microsoft remove the Mitigation to “Block TCP port 445 at the enterprise perimeter firewall”?The researcher who submitted the vulnerability used SMB as the attack vector to trigger the exploit in the RPC service, so the mitigation was effective for the issue that was presented to us. Although blocking ports 139 and 445 [smb] at the perimeter firewall is a recommended practice, it does not directly protect against all potential attack scenarios for this specific vulnerability. At this time we are not aware of any other specific attack vectors for this vulnerability,
You can think what you want about Facebook, but they operate a massive amount of compute and storage unites. And it seems, they have some scientist investigating interesting phenomenon like this. To be honest, it is not primary backup related but in the second instance it is restore related 😀Briefly summarized:They found out, CPU can perform computations incorrectly. So it comes to silent data corruption by CPU. According to their observations these failures are reproducible and not transient. When you think about data-reduction technologies like compression this really can cause problems. As the following article describes, these corruptions occur at scale. Interesting is also how they test their hardware.Read more details here:https://blocksandfiles.com/2022/03/18/facebook-investigates-silent-data-corruption/
I have been a Veeam Vanguard for five years now and was fortunate enough to have attended the VeeamON 2017 event in New Orleans, and it was fantastic. Great sessions, lots of networking and meeting more of the Veeam folks as well as Vanguards.Being a Vanguard is a real honour, and many people ask me when they see my Veeam Vanguard jacket or shirt - What is Veeam? My answer is a typical one - it is backup software for your infrastructure for now and the future, leading to a conversation around technology, backups, and many other things.This year's event is back in Las Vegas in the hybrid mode with in-person and virtual attendees. It will be the first event since 2019 in Miami that will be back to live attendance which is a great thing. In the last couple of years, with the COVID pandemic, the switch to all virtual has left many people feeling disconnected, including me, so getting back to being able to speak to people and share technology stories will be great.One other great benefi
Because of the new v11-feature of immutable backups on XFS filesystem, I am looking for real-world experiences with XFS as Repository.I just read through this forum entry:https://forums.veeam.com/veeam-backup-replication-f2/v10-xfs-all-there-is-to-know-t65222-30.htmland the closing experience of user ferrus:https://forums.veeam.com/veeam-backup-replication-f2/v10-xfs-all-there-is-to-know-t65222-30.html#p388579 Sounds very good to me so far. I can remember first implementations of ReFS Block Cloning. Lets say, it does not work that fine at the beginning.Would you share some of your experiences with XFS as Veeam Repository? I would be interested in:stability performance (over time) needs for troubleshooting administrative effortThanks!
I try to backup a VM Machine on hyper-v but i get error: 20.04.2022 10:56:18 :: Processing DC-01 Error: There are no available IP addresses to connect to Hyper-V Integration Service. How can I solve this, with anoter hyper-v server it works. Thx Peter
Tape consumes 87% less energy and produces 87% less CO2 than equivalent amounts of HDD storage. When analyzed over the total product lifecycle from procurement of raw materials to production to distribution to usage and finally disposal, tape produces 95% less CO2 than HDD and produces 80% less e-waste. https://datastorage-na.fujifilm.com/sustainability/
The LTO Program Technology Provider Companies (TPCs), Hewlett Packard Enterprise Company, IBM Corporation and Quantum Corporation, today released their annual tape media shipment report, detailing year-over-year shipments through the fourth quarter of 2021. The report reveals 148 Exabytes1 (EB) of total tape capacity (compressed) shipped in 2021, marking an impressive record year for the LTO Program. With a growth rate of 40%, this strong performance in shipments continues following the previous record-breaking 110 EB capacity shipped in 2019 and 105 EB of capacity shipped in 2020 (during the pandemic). https://www.businesswire.com/news/home/20220419005174/en/LTO-Tape-Capacity-Shipments-Reach-New-Record-In-2021
Hi Folks, This is a short but informative course on API security. API’s are everywhere from Enterprise Manager to Kasten so good to have an understanding about them. There are some other free courses there too more in the security dept. https://academy.wehackpurple.com/collections?category=free-courses
Git has released a new verson to address some security vulnerabilities, As reported, we are aware that GitHub is affected. But there is a need to upgrade your local installation of Git, especifially when you are using Git on Windows or on multi-user machines. All credit goes to to 俞晨东, and the fix was authored by Johannes Schindelin. CVE-2022-24765As stated in this article, this vulnerability affects multi-user machines, Git users might find themselves unexpectedly in a Git worktree, e.g. when another user created a repository in C:\.git, in a mounted network drive or in a scratch space. Merely having a Git-aware prompt that runs git status (or git diff) and navigate to a directory that is supposedly not a Git worktree, or open such a directory in an editor or IDE such as VS Code or Atom, which will potentially run commands defined by that other user. Vulnerability ImpactSince part of Git for Windows’ uninstaller is copied into the current user’s temporary directory and run in that pla
Today’s post is heavily influenced by @Geoff Burke’s awesome post around weather forecasts in the terminal.For those who missed it, check out Geoff’s post here:Today I ask, what’s your favourite use of ASCII? For me it’s the Star Wars ASCII movie:http://www.asciimation.co.nz It’s not the full movie, but it’s still approx 20 mins long which is an amazing amount of effort to recreate! Well worth the watch!
It's been almost a month since the release of Veeam Backup for Microsoft 365 v6. If you're looking for all the details of v6, then check out @MicoolPaul’s post: Until now no bigger problems were discovered or reported. There's only a known issue, that the CPU load in idle is higher then usual; no big issue, but if you want to solve that, there's a hotfix available: https://www.veeam.com/kb4294 One change, which didn’t get much attention so far, is the newly designed setup: I really like the new fresh look, compared to the old setup. It’s clean, modern and good looking. And it also updates the Veeam Explorers during the setup/upgrade process; in previous versions, those had to be manually installed. Want a comparison to the old setup? Here’s how it looked in v5. What do you think? Which setup is the better one?
Hi, I have one VBR Server 11 wherein I have created the SOBR having capacity tier of azure blob. While creating SOBR I have defined move policy with 0 days. My retention policy is 7 days with 1 full and 6 incremental. My requirement is to move the data onto azure blob automatically as soon as it reaches to performance tier. In my case data is not offloading to azure blob and veeam is taking its default counter of every 4 hours with 0bytes of data offloaded to azure. Can anybody help? Regards,Sunny
Hello, 3 days ago I upgraded Veeam Backup & Replication from 11 to 11a (22.214.171.1241).Since then in the notifications in case of Warning I’m not getting the Details anymore.Actually I know the details of the warnings because they are “historical” and I can still see them in the console, but why they are not written in the e-mails anymore? (see example picture attached, the last column is empty even in case of Warning)Thanks for your help.
Customer is running backups of their VM’s at PROD site to at SOBR and running a backup copy for that job to their DR site (also to a SOBR). They want to replicate some key VMs to their DR site as well and was hoping to seed those replicas from a the backup copy at the DR site. Apparently seeding replicas from a backup (or backup copy) on a SOBR is not supported. Trying to understand why not and how to work around this other than going back to non-SOBR backup repositories?
We attempted a disaster recovery test for servers backed up at Wasabi and 7 of our 8 servers recovered just fine. We have a decent sized file server (2.4 TB) that won't restore from the capacity tier storage. It gets to the same point each time and fails. We have a support ticket and have attempted some fixes and no luck. We would like to clear out both the performance and capacity tier of this one server so that it can create a new full backup at performance and then send the new backup to wasabi. What is the optimal way to clear this out? Just select this server from that object storage and select delete from disk on that server? Or should I create a new job with this one VM and run it?
Login to the community
Log in with your Veeam account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.