Could you please stop spamming the list? This is the bacula-users mailing
list, and if I’m not mistaken, it is dedicated to Bacula.

wt., 7 lip 2026 o 14:20 Heitor Faria <[email protected]> napisał(a):

> "faaleoleo.io — who is behind the "[email protected]" attacks
> An anonymous sender using the identity "Dev Team" [email protected]
> has been posting hostile attacks on NGBackup, both directly and to the
> public bacula-users mailing list. The domain and email headers tie this
> identity to the Bacula / BareOS circle in Germany, specifically to Reiner
> Jung (M:Tier).
>
> SPF evidence. The SPF record for faaleoleo.io (which authorizes who may
> send email on its behalf) lists:
>
> 178.63.245.123 → www.mtier.org (M:Tier, Reiner Jung's company)
> So faaleoleo.io explicitly authorizes M:Tier's server to send mail for
> it. The domain also shares the same host and SPF IP block as its mail
> server mail.sec4share.me. All infrastructure is Hetzner, Germany.
>
> Header evidence (stronger than SPF). The hostile email of 7 Jul 2026 ("Re:
> [Bacula-users] The NGbackup"), From [email protected], was addressed
> To: Heitor Faria and Reiner Jung [email protected]. An earlier attack (4
> Jul) was addressed to Heitor and Arno Lehmann [email protected], another
> long-time Bacula figure. All messages sent via mail.sec4share.me using
> the "Canary" client, with DKIM failing for @faaleoleo (consistent with a
> throwaway/impersonation domain).
>
> Conclusion. The anonymous [email protected] identity is operated
> from, and SPF-linked to, M:Tier's infrastructure, and Reiner Jung is a
> named party on the attack thread. This is the German Bacula/BareOS circle
> using a non-attributable identity to attack a competitor. What is not
> provable is the exact person who typed each message (the WHOIS registration
> is privacy-masked); the records prove the infrastructure and the circle,
> not signed authorship."
>
> Is this true, Reiner?
>
> On Tue, Jul 7, 2026 at 8:00 AM Dev Team <[email protected]> wrote:
>
>> Heitor,
>>
>> NOBODY can/will run a backup on SAP which is not certified! You will
>> loose your support same moment. I think I know SAP and requirements well.
>> SAP have very hard requirements even how your setup for testing - staging
>> and production must look like.
>>
>> Your is based on what? active active, stand by, bow failover work. how
>> you get a quorum?
>>
>> I really would like to talk to a customer of you which is experience of
>> your new development. Which if your customer use a Mainframe? Government i
>> know the responsible people in Brazil and I could ask them they know
>> anything about NG backup. 0r maybe SERPO? All my contacts dont know
>> anything about NGbackup
>>
>>
>>
>> On Dienstag, Juli 07, 2026 at 2:11 PM, Heitor Faria <
>> [email protected]> wrote:
>> Hello Reiner,
>>
>> Thanks for the detailed note. It's clear you read the material closely,
>> so let me answer point by point.
>>
>> PodHeitor vs NGBackup. You're conflating two different products (thanks
>> for being my fan). PodHeitor was built on Community Bacula and deprecated
>> for the better stuff. NGBackup is a from-scratch engine: 1,000+ Rust source
>> files, zero C, memory-safe by construction. That's not a marketing
>> adjective. It's why the whole class of memory-corruption CVEs that legacy
>> engines keep publishing cannot occur here. So "nothing has changed since
>> PodHeitor" is simply wrong. Everything under the hood changed.
>>
>> "Just repackaged community plugins." Every NGBackup plugin is written in
>> one standard language, Rust, compiled and memory-safe. That is materially
>> more performant and more serious than the open-ended
>> PowerShell/Python/shell scripts that other suites rely on for their
>> plugins. Uniform tooling, no interpreter sprawl, no per-plugin runtime
>> surprises. That is original engineering, not copy-paste.
>>
>> High availability. This is real HA, not file copying. NGBackup runs an
>> active/standby Director pair with product-managed catalog and configuration
>> replication. It supports automatic failover with witness quorum and a
>> split-brain guard, plus planned, unplanned, maintenance and test failover
>> modes, and failback with reverse sync. Calling that "SCP/SFTP somewhere" is
>> not accurate. It is a designed control-plane HA architecture, and it is
>> exactly what enterprise backup HA is supposed to mean.
>>
>> Deduplication. There's nothing to misunderstand here. Any backup
>> specialist knows dedup ratios improve as more repetitive, retained backups
>> accumulate. We state the industry-standard 20x, with some environments
>> exceeding 60x at higher retention and redundancy. That's a range tied to
>> retention, reported exactly the way every dedup vendor reports one. Not a
>> lab trick. Arithmetic.
>>
>> Where else we are ahead of Bacula Enterprise:
>>
>> A single control plane. Every daemon (Director, SD, FD) is remotely
>> reconfigurable, reloadable and restartable from one place, including remote
>> SD/FD config edits with validation, atomic apply and rollback. Bacula has
>> none of this.
>> Config-as-data. Director configuration lives in the database as
>> immutable, versioned revisions. No config-file sprawl across daemons and
>> plugins.
>> No clear-text passwords in files. Enrollment is token-based. Secrets are
>> sealed, never written in plaintext to a .conf.
>> Modern and vastly more complete Web and console interfaces.
>> Mainframe / SAP HANA. We have real customers running both in Brazil. The
>> ADABAS plugin ships today. z/OS binaries are being built. On SAP HANA
>> specifically, the absence of a formal certification badge doesn't mean the
>> capability can't be delivered. Certification is a commercial and
>> partnership step, not a technical ceiling. We have customers on it.
>> Bloom filters and segment locality in Dedup for better performance.
>>
>> Pricing. Enterprise backup is quote-based across this market. Bacula
>> Enterprise and the other vendors don't publish price lists either. Ours is
>> the same model, with a concrete migration discount for teams leaving Veeam,
>> Commvault or NetBackup.
>>
>> On the "copy-paste" thesis generally. A single Rust control plane,
>> active/standby HA with automatic failover, config-as-data in the catalog,
>> tokenized enrollment with no plaintext secrets, and Rust-native plugins are
>> not things the community project offers. That is original design, and it's
>> shipping.
>>
>> I'll note, since it's relevant to the tone here, that you have a
>> commercial relationship with Bacula Systems, and this critique arrives
>> alongside messages on LinkedIn that I'd characterize as threats. I'm glad
>> to have a technical debate on the merits. I'd rather keep it there.
>>
>> Best regards,
>> Heitor Faria
>> NGBackup / NGStructures, LSG Global Group
>>
>> On Tue, Jul 7, 2026 at 6:41 AM Reiner Jung <[email protected]> wrote:
>>
>>> Heitor,
>>>
>>> It looks as if the only real selling point of your solution is that it
>>> is written in Rust. Apart from that, if you take a closer look at what you
>>> are trying to sell here, it is just marketing fluff.
>>>
>>> Let’s take ransomware detection as an example. It is more than doubtful
>>> that what you are selling now is any different from what you already tried
>>> to market some time ago as PodHeitor. It was ineffective and pointless
>>> then, and nothing here suggests that has changed.
>>>
>>> Your claim of deduplication with a 60x factor is highly questionable. I
>>> have no idea how you arrive at such numbers – presumably under idealized
>>> lab conditions with a carefully selected configuration that has little to
>>> do with reality.
>>>
>>> You also write:
>>>
>>> “From the mainframe to Microsoft 365 in one place — 21 database,
>>> virtualization and cloud plugins.”
>>>
>>> I assume you do not have a mainframe at home, and it does not appear on
>>> your actual plugin list either. This makes your marketing statement
>>> misleading at best. As PodHeitor there was ever SAP HANA. You never can
>>> provide this as you must be a partner and you are not.
>>>
>>> Your so‑called “high availability” is no such thing; at most it is a
>>> simple failover where you copy files somewhere else using SCP/SFTP.
>>> Architecturally, this is just wrong and falls far short of what real HA
>>> means in enterprise backup. Is this really automatic failure? Ask you AI,
>>> it is not.
>>>
>>> Your entire solution looks just as fragile as your previous offerings
>>> that you kept promoting with bpipe and similar tools.
>>>
>>> There is also no transparent price list, just a vague promise to be 50%
>>> cheaper than Veeam. Where are your actual prices? On your own site, you
>>> instead advertise discounts of “≥ 50% off your current Veeam / Commvault /
>>> NetBackup contract,” which raises even more questions about how realistic
>>> and sustainable your pricing is.
>>>
>>> Based on the documents you have published in the past, it is doubtful
>>> that you even fully understood what your AI-generated material is saying.
>>>
>>> Most of the features you list here are not innovations at all but a
>>> cheap copy of what you have simply recompiled or repackaged from Bacula
>>> Community, which already offers many plugins and advanced backup functions
>>> in open source form.
>>>
>>> The more interesting question is how you and your development team
>>> intend to further develop Bacula Core itself, or whether you are once again
>>> just waiting for the next community release so you can copy new features
>>> into your product.
>>>
>>> Innovation does not come from copy and paste. It comes from original
>>> design, real-world testing, and delivering value beyond what the community
>>> has already built.
>>>
>>>
>>>
>>
>> --
>> Atenciosamente,
>>
>> Heitor faria (Miami)
>> https://ngbackup.com
>> WhatsApp: +1 786-726-1749 | +55 61 98268-4220
>> _______________________________________________
>> Bacula-users mailing list
>> [email protected]
>> https://lists.sourceforge.net/lists/listinfo/bacula-users
>>
>>
>
> --
> Atenciosamente,
>
> Heitor faria (Miami)
> https://ngbackup.com
> WhatsApp: +1 786-726-1749 | +55 61 98268-4220
> _______________________________________________
> Bacula-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/bacula-users
>


-- 
Radosław Korzeniewski
[email protected]
_______________________________________________
Bacula-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/bacula-users

Reply via email to