Dhruv Bhutani / Android Authority
Network Attached Storage devices are all the rage these days, but I’ve been using them for well over a decade at this point. I’ve got multiple boxes sitting on a shelf in my study, holding backups, family photos, my ever-expanding library of media, while also acting as my home server. It’s easy to assume that just because the box is sitting in my home or desk, it’s perfectly safe. I used to think that as long as there’s no unauthorised access to my home internet network, I shouldn’t have anything to worry about. Turns out, I was wrong.
Learning how to harden your NAS can be annoying, but it pays off in peace of mind.
You see, a modern NAS is not just a hard drive with a network cable; it is a fully functional server. Once you start enabling features that make a NAS useful, like remote streaming or file sharing, you are effectively opening it up to wide open internet and that means its time for you to start acting as your own IT department. The moment remote access enters the picture, your local-first device becomes a prime target for anyone with an internet connection and bad intentions. Here is how I learned to harden my NAS and why I treat it like the most vulnerable device in my house.
Which NAS security steps do you follow? 19 votes 2-Factor authentication on all accounts. 37 % Disabling default admin accounts. 5 % VPN for remote access. 32 % 3-2-1 backups. 0 % All of the above. 11 % None of the above. 16 %
Remote access changes everything
Dhruv Bhutani / Android Authority
One of the most common misconceptions when it comes to running any self-hosting hardware or service is that we are too insignificant to be hacked. The reality is that attacks are rarely personal. Bot swarms scour the internet looking for open ports and known vulnerabilities, and they do not care if the target is a Fortune 500 company or a Synology DiskStation sitting in a bedroom. So, you are just as likely to be a target for a ransomware scam as the business down the road.
The moment remote access enters the picture, your local-first device becomes a target.
The problem usually starts with convenience. I want to access my Plex library when I am traveling or on a business trip. I also want to back up photos from my phone while I am on vacation. I also want to be able to share files straight from my NAS instead of reuploading them to cloud storage.
... continue reading