D-Link Forums

The Graveyard - Products No Longer Supported => D-Link Storage => DNS-343 => Topic started by: hilaireg on September 23, 2009, 08:00:23 PM

Title: Add-Ons: Suggestion For Folder
Post by: hilaireg on September 23, 2009, 08:00:23 PM

The new Add-On feature is very nice. 

Once observation, the folder (NAS_PROG) appears at the root of VOLUME_1 and is easily deleted.  Is there a way, without fun_plugging the device, to set the permissions on the folder similar to \\DNS-343\VOLUME_1\.SYSTEMFILE ?

For example:

nas_prog (h) -> Security (Unix Group/User = root)

Cheers,

Title: Re: Add-Ons: Suggestion For Folder
Post by: D-Link Multimedia on September 23, 2009, 09:10:57 PM

I will double check, remember the addons do have to be 'deletable' in order to uninstall them :0.

Title: Re: Add-Ons: Suggestion For Folder
Post by: hilaireg on September 24, 2009, 04:11:38 AM

Should a user delete the add-on folder on a DNS-343 that has been ADS configured, would there be an impact?

IMHO; the add-ons should only be removeable via the Web GUI and the folder not accessible (or deleteable) by users via the volume.

Cheers,

Title: Re: Add-Ons: Suggestion For Folder
Post by: chaicka on September 27, 2009, 10:31:43 AM

Quote from: hilaireg on September 24, 2009, 04:11:38 AM

Should a user delete the add-on folder on a DNS-343 that has been ADS configured, would there be an impact?

IMHO; the add-ons should only be removeable via the Web GUI and the folder not accessible (or deleteable) by users via the volume.

Cheers,

Good Spot. I have encountered similar issue that the folder which Add-Ons are installed is accessible via net share and thus deletable if user has sufficient permission from the root volume.

Title: Re: Add-Ons: Suggestion For Folder
Post by: dnsowner on October 05, 2009, 11:48:32 AM

That is why users should have access only to a spezific share and not to 'Volume_1' :)
Only the administrator shoud access Volume_1

Title: Re: Add-Ons: Suggestion For Folder
Post by: chaicka on October 05, 2009, 08:41:40 PM

Quote from: Stivenson on October 05, 2009, 11:48:32 AM

That is why users should have access only to a spezific share and not to 'Volume_1' :)
Only the administrator shoud access Volume_1

By default, Volume_1 is Full Access to Everyone. Not every user of DNS-343 is security-conscious or spend time hardening and fine-tuning it.

Thus, D-Link should designed it in a responsible and consumer-friendly way. I am very sure it's not difficult to design a system folder where system-based contents and add-ons are stored and with its own netshare with default locked down access rights to the admin account of DNS-343.

Title: Re: Add-Ons: Suggestion For Folder
Post by: hilaireg on October 06, 2009, 02:07:08 PM

I agree,

It was done for the LPD folder and should be done for the Add-On folder.

Additionally, setting permissions on Volume_1 for Admin only doesn't ensure that folder is safe from deletion or viewing.

Cheers,