Windows Backup API

I was wondering if it would be feasible to use the windows backup api?

This would enable backing up files without having permission to access them (even files the Administrator can not access e.g. “LOCAL_SYSTEM”).
On top of that it would allow duplicacy to backup alternate data streams (acl, permissions, attributes, …) which would be really valuable for businesses.

There is a Go implementation that uses this api go-winio.

What do you guys think?

I would add to this a capability to run backup with user, who has SeBackupPrivilege (Backup files and directories - defaults to members of Administrators and Backup Operators groups).
This would be the best from security prospective.
I tried to run :d: with such user - it could create VSS but failed to create junction to it, so backup failed.
There is really no reason for running backup with real administrator.
I will create a separate topic for this…

1 Like