Security on 24xSiempre

Chile Law 21.719: technical compliance manual with Veeam

Thu, 07 May 2026 00:00:00 +0000

Technical compliance with Chile Law 21.719 using Veeam Data Platform: encryption, immutability, Staged Restore, VRO, Threat Hunter, and an auditable matrix. Effective Dec 1, 2026.

vScan Vulnerability Scanner 2.0

Mon, 06 Apr 2026 00:00:00 +0000

vScan 2.0, open-source app to scan Veeam Backup & Replication restore points with Trivy, Grype and Jadi. Lifecycle, CISA KEV, PDF reports.

JADI Scanner

Wed, 25 Mar 2026 00:00:00 +0000

Something I’ve been working on for several months and that is finally taking shape is Jadi, a vulnerability scanner specifically designed to analyze mounted backups and filesystems. The name is no coincidence JADI stands for my kid’s initials, so this project holds a special meaning for me beyond the technical side. In this post I’ll walk you through what it’s all about, why I built it, how it works under the hood, and what’s coming next.

Veeam Decoys - Early Detection

Tue, 17 Dec 2024 00:00:00 +0000

We are always looking for ways to better protect our data protection infrastructure. Recent investigations and evidence of ransomware attacks have revealed something key: attackers are focusing their efforts on compromising and destroying backup solutions. Why? Simple: without backups, organizations are more likely to pay the ransom. This is where Veeam Decoys comes in, an open source project I developed some time ago to help detect lateral movements (TA0008) and service discovery (TA0007) in your internal network.

Proxmox Lab with ZimaBlade

Fri, 21 Jun 2024 00:00:00 +0000

According to the latest news from Veeam, where support for Proxmox Virtual Environment (VE) was announced and before the update was released, I started reviewing how to put together a small lab to install Proxmox on physical machines and avoid doing nested virtualization in vSphere. In this post we will see what servers I am using and how this solution works.

Protecting Oracle KVM with Veeam

Wed, 03 Apr 2024 00:00:00 +0000

In this post we will review the configuration of Veeam Backup & Replication and integration with Oracle KVM to protect virtual machines running on this platform. We will also see some important characteristics in relation to disks, types of disks in KVM and how to create disks to obtain Changed Block Tracking in incremental backups.

Incident response plan with NIST and Veeam

Wed, 31 Jan 2024 00:00:00 +0000

Incident response plan based on NIST 800-61, NIST 800-53r5 and MITRE ATT&CK with Veeam for ransomware protection and resilience.

Which Operating System is More Secure?

Fri, 03 Nov 2023 00:00:00 +0000

In this post, we will review the operating systems most used by organizations in IT environments, whether in the public cloud or local data centers, asking the typical question, which operating system is more secure? Microsoft Windows, Linux, OpenBSD, FreeBSD? Or, from another point of view, what are the protection measures that will be applied to operating systems? Is only Firewall and Antivirus enough? Is it sufficient to disable the SSH service in Linux environments? Is it enough to not use root?

How to Integrate Active Directory with Kasten K10 and OpenShift

Tue, 25 Apr 2023 00:00:00 +0000

In this post, we will review how to configure Kasten K10 installed via Operator for Red Hat Openshift to integrate the Authentikation of Microsoft Active Directory to access the console of K10 with Dex.

Kasten RBAC Multi-Tenant Multi-Cluster Keycloak – 1

Wed, 26 Jan 2022 00:00:00 +0000

In this post, we will look at Role Based Access Control (RBAC) configuration in conjunction with Kasten K10 for access to one or multiple clusters protected by Kasten, is aimed both at clients who manage 1 or more clusters of any distribution of kubernetes supported by K10, as well as to service providers (SP or MSP) that offer the support of containers of kubernetes with Kasten K10, with the aim of providing controlled access to users / clients according to the granular roles required by each cluster or operation. We will also use a Single Sign-On (SSO) solution using OpenID in this case, Keycloak, for the centralized management of access credentials for either users or groups.

Kasten RBAC Multi-Tenant Multi-Cluster Keycloak – 2

Wed, 26 Jan 2022 00:00:00 +0000

Excellent topic we’re reviewing — in the previous post we reviewed everything related to configuring Keycloak for centralized user management through OpenID, preparing it for integration with Kasten K10 and Kasten K10 Multi-Cluster Manager. So in this post we will go through step-by-step configuration of the ClusterRoles, Roles and groups needed to manage Kasten K10 via RBAC.

Veeam Immutable Repository with Red Hat Enterprise Linux

Sun, 01 Aug 2021 00:00:00 +0000

In this post, we will review installing an Immutable repository from Veeam With Red Hat Enterprise Linux, we previously reviewed an application for Ubuntu called VeeamHubRepo, which allows us to easily set up an immutable repository on Ubuntu Linux. Now we will review how to do the configuration in Red Hat Enterprise Linux, with a small script for the configuration of the repository automatically and in an easy to use way.

Veeam Hardened (Immutable) Repository

Thu, 25 Feb 2021 00:00:00 +0000

Tremendous news with the release of version 11 of Veeam Availability Suite containing over 200 enhancements, CDP Snapshotless Replication, Instant Recovery for NAS / Databases and also Veeam Hardened Repository. In this post we will focus on the installation, configuration in detail of this new type of repository that will allow us to keep our backups immutable!

Veeam Capacity Tier Oracle Cloud Object Storage

Mon, 21 Sep 2020 00:00:00 +0000

Lately some people have asked me if Veeam supports or works with the Oracle Cloud Object Storage service, to configure it in Veeam Capacity Tier and since in the previous post we talked about Oracle, in this post we will see how to integrate the Oracle Cloud Object Storage service with a Veeam Scale-Out Backup Repository or SOBR and demonstrate the benefits of having a multi-cloud mobility solution.