ReadyNAS 2120 v2 and NetaTalk

Talking of the AFP protocol obsolete for almost two decades? NetAtalk is an Open Source implementation of the Apple Filing  Protocol (AFP).

Operating AFP and SMB concurrently inherited many issues. Once upon a time, some strange recommendations - coming from times where the SMB protocol was not the de-facto standard. And back in about 2022, there was a vulnerability in "Samba vfs_fruit module insecurely handles extended file attributes" fixed later also on the ReadyNAS OS6 platform.

Wherever this warning came from - if users are ignorant keeping the ReadyNAS on a current build, not much we can talk about here. For reasons, the current ReadyNAS OS6 build is as of writing 6.10.10. Be warned it's not a straight forward use when it comes to new installations however.

---

@Smoyle wrote:

I have a ReadyNAS 2120 v2 running 6.5.0 firmware, everything is running fine but on a recent penetration test we had an alert advising us that NetaTalk is out of date and should be updated.

The issue is I can't find any reference to NetaTalk in the admin portal.

 

---

As @schumaku says, NetaTalk is AFP.  If it is enabled on your NAS, you can probably disable it, since current MacOS software supports SMB.  Generally it is best practice to disable protocols you don't use.

6.5.0 firmware was released in May 2016, and there have been a lot of security updates made since then. 6.10.10 was just released, so it might be prudent to update to 6.10.9, and check back here in few weeks on whether anyone has found issues with 6.10.10.  You will need to manually download and install it, as Netgear has apparently forgotten the NAS has a "check for updates" feature, and they have neglected to put the past two releases on their update server.

• https://kb.netgear.com/000065653/ReadyNAS-OS-Software-Version-6-10-9