NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
How secure is ReadyNAS Remote/FTP
Hello,
I recently purchased a Netgear ReadyNAS Duo V2.
I am so far satisfied with the NAS but I do have two questions about the features.
The NAS has standard functionality: ReadyNAS Remote
This is a dedicated application of Netgear which for me FTP possibly unnecessary.
I found out that first you create a online account wich you login on the application (workstation ore mobiledevice). The NAS makes a connection to the outside (which involves opening any ports redundant) so you get a connection and the shares can be accessed by the password typing a local account that i have created in the NAS.
If I'm wrong let me know :)
Now my question is this: Can someone explain to me how the application works and how secure is it? Does Anyone have (Good ore Bad) experience with this function?
Furthermore, can anyone tell me how secure is FTP? Are there frequent updates for the NAS? Does anyone have (Good ore Bad) experience with this function?
Thanks for your help!
Regards, Mpilo90
I recently purchased a Netgear ReadyNAS Duo V2.
I am so far satisfied with the NAS but I do have two questions about the features.
The NAS has standard functionality: ReadyNAS Remote
This is a dedicated application of Netgear which for me FTP possibly unnecessary.
I found out that first you create a online account wich you login on the application (workstation ore mobiledevice). The NAS makes a connection to the outside (which involves opening any ports redundant) so you get a connection and the shares can be accessed by the password typing a local account that i have created in the NAS.
If I'm wrong let me know :)
Now my question is this: Can someone explain to me how the application works and how secure is it? Does Anyone have (Good ore Bad) experience with this function?
Furthermore, can anyone tell me how secure is FTP? Are there frequent updates for the NAS? Does anyone have (Good ore Bad) experience with this function?
Thanks for your help!
Regards, Mpilo90
8 Replies
Replies have been turned off for this discussion
- What do you mean by "safe"? "Secure"? or something else?
- My apologies.
I mean safe. - I am not sure what you mean by "safe". Maybe you could give an example of something "unsafe"?
- I'm talking about security.
Sitting in the NAS / features many leaks that have little or no fixt by updates?
Do you understand me me now? I must look good on my English :)
I have edit the Topic. - Got it. "Safe" could also have meant reliable.
Security over FTP - the x86 and V1 products will accept ftps connections with explicit TLS. I don't have a v2, but imagine it does as well. This should be secure, assuming you pick a strong password.
However, the NAS will also accept an unencrypted connection, and FTP (unlike FTPS) sends the user/pass in the clear. So if you care about security you need to be careful to always use FTPS in the client.
I haven't seen anything in the forums complaining about other security holes in FTP.
Security over ReadyNAS remote- The connection is encrypted, and Netgear's intent is to provide a secure service. However, the encrypted data is routed through Netgear servers, and the details of the implementation have never been published (or been run through a published security audit) as far as I can see. So it is conceivable that there are vulnerabilities - either in the encryption key exchange, or in the server (if it were hacked). It is essentially impossible for users to sort out whether these hypothetical vulnerabilities exist. And in any event it is only as secure as your user password. This is not to criticize Netgear, essentially all cloud services are in a similar place on this. As a user, you'd need to trust the vendor at the end of the day. I haven't seen any postings in the forum suggesting that their data was compromised due to Readynas remote.
I have seen several posts on the java version used in RAIDar - which is down-rev, and has known security issues.
Personally, I have chosen to open ports for FTP and https. I'm not using ReadyNAS remote much (more due to performance than to security concerns). However, if I wanted the best security I could get, I would invest in a VPN router that was compatible with my laptop, android, and IOS devices. - Best StephenB,
Thanks for your prompt and clear explanations.
Far as I understand from your words, the data from my NAS go's through the servers of Netgear to my. Instead directly to my system ...A detour seems like me and what is their reason for ...?
Too bad that Netgear gives little information about the product: Readynas Remote (Or I'm looking wrong) - With ReadyNAS remote, the initial connection is always through a Netgear Server. If you are on your home network, it is supposed to switch to a direct connection. If you are away from home, it remains routed through their servers.
There are two benefits of this approach.
(a) it simplifies firewall traversal. All connections are made outbound to the Netgear server, so there is no need for port forwarding
(b) There is also no need for dynamic DNS. Only the Netgear servers know where your NAS is on the internet.
In principle it is a secure approach. Though, as I said, you need to trust their implementation and integrity. Just like you need to trust verisign and other certification agencies when you use https. - Okay it is clear to me now.
It has not convinced me yet to Readynas Remote to use, but I will now go out.
Thanks for your quick responses and help.
Regards, Pim
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
