How long do you keep your backups


Backup retention periods seem to be driven by urban myths and how systems worked in the 1970s. Not wholly surprising since most back up software still seems to be stuck in that period and most sales pitches are urban myths.

So how long do you keep backups for (this is the easy starter question) 10 years, 7 years or even forever? Do you keep you daily backups for that long or only your monthly or yearly ones?
Why (don’t you just hate it when someone says why) have you chosen that time period? Was it because someone in the business said there was a law that said they had to keep some data for that time?
What happens to stuff that was created and then deleted between your backups tapes?
Have they ever shown you the law that states that?
My first question is where is the data kept?
Most HR/finance/legal systems likely to have a data retention requirement store data in a database these days and the data covers the last seven years or whatever is the legal requirement or for whatever period the department wants to keep it. So, if you restore the database from last night’s backup there would be seven years of data yes? So why do you have seven years of backups? If you restored the database from 7 years ago it would contain data that was 7-14 years old, is that any use to anyone? Is it even legal to keep data about someone for that long? (GDPR brings with it the right to be forgotten).

Back in the day when most databases were flat file types or even just spreadsheets and documents and storage cost a lot, the only other copy of the data was on the backup tape and it all made sense. However, most modern systems retain the required data in the system for the required period of time, it is probably one of the reasons that system was bought in the first place.
You may have some file shares that have data covered by some vague 7-year rule (Health and Safety springs to mind) but if there is a legal requirement there should be a system to manage it and it should also manage versioning of documents, logging changes and by whom, a file share may not be up to the job, legally.

The question now is, how long should you keep backups and why should you keep them at all?
Stuff gets deleted, for sure, and there is always that threat of encryption malware so you need to be able restore it and you need copies somewhere else. That is the case for backups made, now how long to keep them and what frequency do you take them?

We keep daily backups for 3 months and that is it, as for frequency it depends on the system and server function, where’s the data, how often does it change and what is your ability to re do and missing data? A web front server has nothing of interest on it so a weekly backup will suffice for most, a database server may need TL backups every 15 minutes and a file server daily, but using inbuilt systems to give better protection such as VSS, not a backup strategy but a basic versioning system, SharePoint and other systems can do this better if needed.

The business took its sweet time to get it’s head around it like many things when you challenge an historic convention based on myths and outdated technology, but we are getting there. Cost for tapes and offsite storage where waved under noses to stimulate the thought processes. We still have some file stores that need some longer retention, but it is a very small amount of data it is not a real issue and should eventually be moved to a proper system. For email (always a sticky problem) we now have a cloud based journaling system in place, all email will always available which is better than we had before from periodic backups, we have failover email servers and backups for speedy system recovery not for email recovery (what was your email running on 10 years ago, could you recover an Exchange 2000 system to get that email back even if you could lay your hands on the Backup exec software and Windows 2000 install CD to go on an old server that can take the only functioning SDLT/LTO 2/AIT tape drive left).

Backups need to be brought in to the here and now and be designed to useful and manageable with today’s systems and quantity of data, not still trying to support system design from the 70s. Virtualization is a game changer for backups and you need to move away from one size fits all to one that looks at the data and protects accordingly.

Data, what is it, where is it, how often does it change and how would you regenerate it at the application level? These are the questions to ask, expect some blank stares in response.


Comments

Post a Comment

Popular posts from this blog

Scripting DNS entries

For reasons to do with DR we needed to change our IP addressing scheme, either for our servers or for our PCs and printers and what not. Obviously changing PCs and printers was a whole lot easier due to the possible issues of inept developers’ hard coding IP addresses causing no end of problems with re-addressing the servers. This has entailed changing all the DNS entries for our printers, (whatever happened to the paperless office?) That in itself is no real challenge, they all have web interfaces so a quick connect and amend the setting then next printer. Updating the DNS entries was going to be a bit tiresome so I did a quick Google on how to do this with a script and up popped DNSCMD. You can run this from a CMD box on your PC, the main options you need to know are /recorddelete and /recordadd. To delete a record you simple need to type dnscmd <ServerName> /recorddelete <ZoneName> <NodeName> <RRType> <RRData>[/f] What does all that mean? Well i
Read more

Enterprise Vault - Failed Exchange Task

Here's another weird one. Enterprise Vault, we use this for e-mail archiving. It does a reasonable job. Probably no better or worse than any similar product. A couple of days ago I noticed that there was warning that it hadn't archived anything from one of our mailbox servers for a couple of days, not big issue as there is just a couple mailboxes on there as it used for testing at the moment. I had a look at the associated task and it was stopped. Started it and it failed. Error in the event log looked something like below The Task 'Exchange Mailbox Archiving Task for EXCH' failed to log on to Exchange server 'EXCH' using mailbox 'SMTP:EnterpriseVault@symantec.local'. Please ensure the mailbox has not been hidden, that the server is running and that the Vault account has sufficient permissions on the server. I went through every conceivable setting in AD, EV and Exchange trying to work out what had happened and why it wasn't working on thi
Read more

Windows Phone to iPhone - a painful transition

Windows Phone died a death due to a whole heap of incompetence from Microsoft.  My phone was an old Nokia 925, about 4 1/2 years old and bought and paid by my company. There were always low requirements for company phones, if it rung and you answered it, all was good. Then Hangouts reared its head (Google want to destroy MS, so WP support) but third-party support gave a stay of execution. The final nail was a requirement for out of hours support software that had no app for Windows Phone. I had to be “downgraded” to an iPhone 6s (yes, it is a low spec 2 version old iPhone, better hardware than my 925 but not really up there as a current version, how my company loves their staff, buy expensive crap rather than cheap crap). Stuff that just worked on my old phone, now needs 'me' to be re-engineered to work the Apple way.  This is only slightly less bad than the Google eat all your life and sell it back to you way, but it is like stepping back in to the 1990s Microsoft way
Read more