Risky? DMZ & NAS - What Could Go Wrong?

  • Thread starter Thread starter kandelabr
  • Start date Start date
AI Thread Summary
Using a home NAS as an FTP server by setting it as a DMZ computer poses significant security risks. While it allows for user-specific access to designated folders, exposing the NAS directly to the internet can lead to unauthorized access, including potential exploitation of the NAS administration page. Instead of using DMZ, a safer approach is to assign a static IP to the NAS and implement port forwarding, specifically for FTP traffic on port 21. Additionally, FTP transmits data, including usernames and passwords, in clear text, making it vulnerable to interception. For enhanced security, setting up an SSH server for secure file transfers is recommended over traditional FTP.
kandelabr
Messages
110
Reaction score
0
Hello,

i've just got a home NAS and it has an option to use it as a FTP server, but if i want to use it as one, i need to set its ip to be the "DMZ computer" in router's settings.

i know it's a security risk for computers, but is it also for a NAS? i can set the precise username and password for those that will be connecting, and that user will only have access to specified folder and nothing else.

what could go wrong?*

________________________________
* sarcasm not specifically excluded
 
Computer science news on Phys.org
i would very strongly advise against placing anything in the DMZ on the router. This opens up the system to the internet and can potentially cause problems. Allowing full access from the internet will afford a malicious user the opportunity to access your NAS' administration page which is dangerous.
The best option, if you want to run an ftp, is assign your NAS a static IP address and setup port forwarding on the router and forward all data on port 21 to your NAS. THis will let you access your ftp with minimal risk.
 
that's a good idea.
let me try :)

thanks,
kandelabr
 
I would also advise to Port Forwarding. DMZ can be useful on a temporary basis though.
 
kandelabr said:
Hello,

i've just got a home NAS and it has an option to use it as a FTP server, but if i want to use it as one, i need to set its ip to be the "DMZ computer" in router's settings.

i know it's a security risk for computers, but is it also for a NAS? i can set the precise username and password for those that will be connecting, and that user will only have access to specified folder and nothing else.

what could go wrong?*

________________________________
* sarcasm not specifically excluded


In a FTP server, everything is transmitted in clear text over the network. So, the username and the password can be easily sniffed.
I suggest you set up a SSH server on the computer (in order to use SCP); and forget the FTP server on the NAS.
 

Thread 'The Human Cost of AI'

This week, I saw a documentary done by the French called Les sacrifiés de l'IA, which was presented by a Canadian show Enquête. If you understand French I recommend it. Very eye-opening. I found a similar documentary in English called The Human Cost of AI: Data workers in the Global South. There is also an interview with Milagros Miceli (appearing in both documentaries) on Youtube: I also found a powerpoint presentation by the economist Uma Rani (appearing in the French documentary), AI...
View full post »

Similar threads

Downloading videos from TP-Link NVR1108H-W Network Video Recorder
Replies
1
Views
401
Using Word for Equation Editing
Replies
15
Views
2K
Built-In Server-to-Server Connectability (?)
Replies
4
Views
3K
What Could Be Causing Unexpected Results in the LET Analysis with MCNP6.2?
Replies
8
Views
3K
What could be causing my wireless network to keep dropping and how can I fix it?
Replies
4
Views
5K
How do I set up a Router/Netgear Powerline Ethernet Network?
Replies
4
Views
19K
Why Can't My Windows XP Desktop Access Shared Folders on Ubuntu 10.04?
Replies
2
Views
4K
What's going on with databases? Why so prone to attacks yet still used
Replies
21
Views
4K
What is the role of a cache controller in optimizing CPU performance?
Replies
10
Views
3K
I could really use some help picking my optional module [GameDev]
Replies
2
Views
2K

Hot Threads

Recent Insights

Back
Top