Is my Veeam UNC (CIF/SMB) connection exposed to Cryptolocker

[JamesBayley]

My goal is to protect my Veeam backup destination on my NAS from Cryptolocker while using Veeam Endpoint Backup in the normal way. I want the connection to the share to be available only to Veeam.

I have created a share on my Linux NAS called "\\NAS\Veeam" and set a strong password and I am using this as my backup destination.

Testing shows that running a backup job does NOT give access to the share \\NAS\Veeam in Windows Explorer and in fact Windows Explorer asks for a password. "NET USE" at the command prompt does not show a connection. This looks hopeful.

I don't know enough about Veeam or Cryptolocker or Windows security.

* Is the password stored in plain text?
* how does Veeam connect to the backup repository?
* Does the Windows security implementation mean that his connection is not available to other processes (such as Cryptolocker)?

[Dima P.]

Hi James,

Is the password stored in plain text?

No, it’s not stored in the plain text.

how does Veeam connect to the backup repository?

Using the permissions set on the repository.

connection is not available to other processes (such as Cryptolocker)?

Yes its not available to other processes.

Recommendations from this thread might also answer some of your question, so kindly check it.