This is presented in the same vein as Lenny Zeltserâ€™s How to Suck at Information Security. If you have not read Lennyâ€™s article it is highly recommended.
If you want to avoid data loss avoid these behaviors. A more thorough article is available over here.
- Ignore your backup window run time.
- Assume that what needs to be backed up today will be what needs to be backed up tomorrow without any ongoing review.
- Run your backups manually.
- Only run backups now and then when â€œsomething changedâ€.
- To take backups offsite just throw them in your car or take it home with you.
- Donâ€™t physically secure your offsite backups.
- Donâ€™t encrypt your backups.
- Never read any logs.
- Never test your backups.
- Donâ€™t document your backup and recovery plan.
- Donâ€™t have a plan for getting offsite backups onsite in an emergency.
- Donâ€™t worry about the availability of your backup media outside of â€œnormalâ€ hours.
- Only plan to recover from natural disasters.
- Only plan to recover from malicious attacks.
- Only plan to recover from hardware failure.
- Only plan to recover from accidental deletions or corruptions.
- Donâ€™t rotate between multiple media sets. One tape set is enough.
- Donâ€™t consider the need for both whole system and individual file recovery.
- Donâ€™t take backups offsite for safe storage.
- Use RAID for backups.
- Only have offsite backups.
- Only use online backups.
- Copy data between servers as a backup.
- Use the same single tape over an over ignoring any tape error messages you may receive.
- Send all your backups to dev/null :)