Microsoft

As a Home User – Should You Move to The Cloud?

As a Home User – Should You Move to The Cloud? 1200 800 Jason Stadtlander

“Technology professionals (and retail software and service providers) have done a phenomenal job of seriously screwing up the perspective of what the “cloud” really is and how it should properly be defined. “

Let me first state that I am an Information Technology Security Professional with over twenty years of experience dealing with everything from high-level multi-site network communications down to the home user who can’t get their iPhone to connect to their computer. I have helped the State Police with child pornography investigations and I have taught foster parents how to protect their foster children online. So, I have basically seen it all.

That being said, when I am approached by my home user clients (most of whom I have known for years) and they ask me “Should I move to the cloud?” I cringe. Not because I have any problem what so ever with my home users, what I cringe at is the fact that this is a much more complicated question than they know.

What is “The Cloud”?

Technology professionals (and retail software and service providers) have done a phenomenal job of seriously screwing up the perspective of what the “cloud” really is and how it should properly be defined.

In short, all “the cloud” really is – is your data existing on someone else’s computer data center. It’s not sitting out there in some mysterious nebula where it has the ultimate protection. It is controlled and managed by humans, albeit humans who know technology better than most people (generally speaking). But there is still the human element of controlling how safe that data is, ensuring that it is protected from viruses, hardware failures, and even natural disasters.

Where In The World Is It?

First, let’s be clear. Your data is out there somewhere, physically. It’s sitting on a computer just like your computer at home but with a TON more power than your computer.

  • Amazon Prime Drive: If you are in the U.S. and use Amazon Prime’s Drive, your data is sitting in a server (or set of servers) in Northern Virginia; San Francisco, CA; Seattle, WA or Northeastern Oregon. If you are in Europe, your photos and documents are sitting on a server in Dublin, Ireland.
  • Google Drive: If you are in the U.S. and use Google’s Drive feature, your data is sitting on a server (or set of servers) in Dalles, OR; Atlanta, GA; Reston, VA; Lenoir, NC or Moncks Corner, SC. 
  • Dropbox: If you are using Dropbox to move files around or share files, then your data is sitting in one of three data centers in the U.S. or in one data center in Europe. Although I do know the location of these, I am not allowed to disclose the true location. It’s the same situation though, your data sitting on someone’s server in a physical location.
  • Microsoft’s One Drive: If you are in the U.S. and use the free drive software that comes with Office 365, then your data is sitting in Quincy, WA; San Francisco, CA; Cheyenne, WY; San Antonio, TX; Des Moine, IA; Chicago, IL; or in one of two locations in VA. 

There really is no way to know (unless you work at one of these facilities) exactly which location your data is actually calling home. Companies look at your IP address (the unique address that you use to connect to the internet) and determine your approximate physical location based on that. Then they generally try to keep your data physically close to that location, just so that you don’t have very many hops (a distance term on the Internet) to deal with.

Is My Data Safe?

Well now, this is the million dollar question, isn’t it? As evasive as it sounds, your data is as safe as the people operating the facility and the service. These companies are bound by privacy laws just like most companies in the U.S. and Europe. However, being bound to the laws and actually adhering to them are two different things. It takes a lot of manpower and a lot of work to ensure that encryption algorithms are kept up to date and maintained. We all know about the TJX data breach of 2007, the Experian data breach of 2017 and the Marriott / Starwood data breach of 2018. These are just three of the more than 300 data breaches that have occurred within the last 15 years in fortune 500 companies.

Keep in mind, those are JUST the fortune 500 companies. That’s not even looking at the thousands of companies that do not fall into that category. Here is a small list of known data breaches that have occurred just in the last 6 months: 2019 Data Breaches.

My Take on it All.

In my humble opinion, it is one thing for your private information to be stolen or destroyed out there in some corporate breach or disaster. It’s another for your priceless photos or documents to be irretrievable. It is my personal belief that no one can protect my data better than I can. I am responsible for maintaining these files. It is what I cherish and plan to pass down to my children. The photos of them being born, the articles and stories I have written. The interviews I’ve done of my family members on video. I frankly do not trust these irreplaceable files to be sitting in someone else’s hands.

I do have my data on “The Cloud”, but it’s my cloud. (I also happen to hold the data for most of my family as well) I am not oblivious to the fact that there could be a fire in my house or some kind of a disaster, so I work hard to make sure that it is all well protected. I back up all of my data to a special storage server in my home. That server replicates instantly with two other storage servers. One is located sixty miles from me at a friends house and the other is located seven hundred miles away at a family member’s house. I also connect (almost daily) just to make sure security patches are performed and that the data is replicating without any problems. The data is encrypted and cannot be viewed without a special encryption key that only I possess. Also, the people who do back up to my storage solution (such as my family members and friends) are the only ones who can see their own data. If I go look at it, it’s just a bunch of encrypted files that don’t make any sense without the encryption key (password) that is located on each of the devices that I back up.

It’s not a perfect solution, but I know that even if I have a fire or flood, I can still access my data and protect the data of my friends and family. I also have instructions in my will that state how to access the data and deal with it in the event of my own demise. This is the era we live in and it’s important that we understand the impact that a loss of data can have.

What Can You Do as a Home User?

First, check and see how much data you are talking about. Most home users don’t need more than 100GB to be protected. If this is the case, then my advice is – have two backup hard drives that will hold at least three times your data (300GB hard drive if you have 100GB of data). Then back up your data to both hard drives using software such as Acronis or EaseUS and keep one hard drive in a fireproof safe at home and take the other one somewhere that is at least ten miles from your home (take it to work and keep it in your desk or store it at a family member’s home). And here is the most important part: KEEP IT UP TO DATE!! Make absolutely sure you update your backups at least every thirty days.

Lastly, if all this seems too daunting, you can always reach out to me and I can do it all for you 😉

MBR System Recovery Partition

Adjusting the MBR (SRP) partition in Windows 7 to prepare for Windows 10 Upgrade

Adjusting the MBR (SRP) partition in Windows 7 to prepare for Windows 10 Upgrade 639 479 Jason Stadtlander

As many of you may be aware, I am in IT by trade and recently many people have been trying to perform the free upgrade to Windows 10 that is being offered by Microsoft until July 1, 2016.

One problem many people run into is not having enough space on the System Recovery Partition (SRP) which is a special little 100MB space on your hard drive that Windows uses for storing special boot files in case your operating system has problems.

The following will show you how to free up space on your SRP so that you can perform the operating system upgrade to Windows 10. Keep in mind, this is a sensitive partition, so be sure to follow exactly as I have outlined below and you should be fine. I have tested this and it works perfectly. Usually it will free up an additional 40-50MB of space.

 

INSTRUCTIONS:

This makes a permanent, but small, increase in the available space of the SRP (system recovery partition).

Prepare the Recovery Partition and Backup Permissions

  1. Press the Windows key + R. In the Run window that comes up, type msc and press Enter.
  2. Select the partition marked System Reserve. Press-and-hold or right-click on it.
  3. Select Change Drive Letter and Paths.
  4. Choose Add.
  5. Enter Y for the drive letter.
  6. Tap or click OK.
  7. From the Start menu, search for cmd. Right-click Command Prompt from the search results, and select Run as administrator.
  8. In the command prompt, type Y: and hit enter to switch to that drive.
  9. Type the following and press enter: takeown /d y /r /f .
    Note:
    You must include the space and the period after the “f”, or the command will not work properly.
  10. Type icacls Y:\ /save %systemdrive%\SysResrvBU.txt /t to back up the current permissions.
  11. Type whoami and press Enter, and then record the user name.
  12. Type the following command:
    icacls . /grant <username you got from whoami>:F /t and press Enter.
    Note: Do not put a space between the username and “:F”, or the command won’t work.

Truncate the NTFS Log

  1. Check the size of the NTFS Log first. From the Command Prompt, type the following and press Enter: chkdsk /L Y:
    1. If the size is less than 5000KB, you do not need to truncate the file.
  2. To truncate the file, type the following and press Enter: chkdsk /L:5000 /X /F

Restore permissions

  1. Press the Windows Key (windows key) + R
  2. Enter the %systemdrive%\SysResrvBU.txt file and press Enter.
  3. A notepad or other text editor application should open with the contents of the file. On the first line you will notice that it’s blank. Enter a single “.” (without the quotes) and save the file.
    NOTE: Because it’s on the system drive, you might have to save it elsewhere and then copy and paste it to the system drive location manually.
  4. Close the text editor and go back to the command prompt that you have open.
  5. Type the following command: icacls Y:\ /restore %systemdrive%\SysResrvBU.txt /c /t and press Enter.
    1. A message may display indicating some files failed while processing – this is normal as these files have been deleted subsequent to backing them up.
    2. If the amount of successful files is none, then the command was executed incorrectly; you must have some files successfully processed before continuing.
  6. Adjust the ACL back to System by typing the following:
    icacls . /grant system:f /t and press Enter.
  7. Set the owner of the drive back to System by typing the following command:
    icacls Y: /setowner SYSTEM /t /c and press Enter.
  8. Go back to Disk Management and Refresh the data to confirm if the SRP now has a greater percentage of free space. If so, the drive letter can be removed at this point.
  9. Right-click the System Reserved Partition.
  10. Select Change Drive Letter and Paths.
  11. Choose the Y:
  12. Select Remove.
  13. Click OK.

 

Back to top