• February 24, 2025, 01:08:48 PM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: Security questions  (Read 3601 times)

rc-dc

  • Level 1 Member
  • *
  • Posts: 11
Security questions
« on: February 03, 2009, 06:08:28 PM »
I'm looking for advice on security for the DNS-323.  It installed beautifully; I'm running two 1TB WD green WD10EADS drives with a wireless D-Link router (WEP) / cable modem.  I'm primarily using it for media storage, but I like the idea of keeping all my files on the drives (one is a backup to the other) so I can nuke my laptop or switch to a new computer without disturbing my file structures.  But I'm wary of having some important business/personal files on an "always on/always connected" drive.

I have no plans to use it for FTP access, but the iTunes server is on. Does having FTP off help with this security concern? Is setting up groups / accounts better? Or is it best just to not store sensitive files on the DNS-323 at all?  What about a hardware firewall (e.g. ZoneAlarm)? Or...am I just being paranoid?

There is some useful information on security in this forum but unfortunately most of the answers raised my concerns even more, leading to this post.

I'm a relative noob to networking, but I got far enough to set up a home network with two machines, a wireless printer, wireless router and got away from all the factory settings for the router and DNS. Please feel free to spare no detail.

Any advice or recommendations are most welcome. Many thanks!
Logged

D-Link Multimedia

  • Poweruser
  • Level 7 Member
  • **
  • Posts: 1066
    • D-link Systems, Inc.
Re: Security questions
« Reply #1 on: February 03, 2009, 06:30:21 PM »
Well for starters you mentioned you are using WEP as your wireless encryption. I can tell you I personally have cracked a WEP enabled router in under an hour when they were transmitting a good amount of data. So to start I would suggest moving your wireless encryption to WPA and preferably WPA2 AES.

If they do manage to get on wirelessly or wired and you do not have users/groups setup for permissions, it is as simple as \\nas-ip\ and they can access all of the data on the drives. For this reason I would suggest setting up some account privileges.

Not enabling your FTP is one way of limiting access however if you do not have the ports forwarded from your router to your NAS then there is no real way for them to access your box directly unless they backdoor your PC.

Hope some of these pointers help :).
Logged

rc-dc

  • Level 1 Member
  • *
  • Posts: 11
Re: Security questions
« Reply #2 on: February 04, 2009, 05:53:11 PM »
Thanks a million - that helps a lot.  I've enabled WPA2 already (that's causing some other problems with my iPod Touch 2g and wireless printer, but I'll get that resolved), and will create profiles for the DNS-323.

Thanks again!
Logged