2
submitted 2 years ago by [email protected] to c/[email protected]

Given how notorious the Chinese government is in forcing local companies to add spyware to their products or store encrypted data for future decryption when quantum computers will become more feasible (e.g. Huawei), how secure do you think their Terramaster NAS products are? Is it worth the cost or is it best to just steer clear of these?

you are viewing a single comment's thread
view the rest of the comments
[-] [email protected] 1 points 2 years ago

With all those "smart" devices (Including Internet of Crap), the rule of thumb is to put them on their own VLAN. Then put network filtering in place, such that nothing can talk out of this VLAN. And all you client devices that needs Internet access can then talk to them in the other VLAN.

You could allow specific destinations for them, but even DNS, it is better to just have a service exposed to them that only uses a hosts file to avoid VPN or exfiltration over DNS.

That is best practice. If you want to run a software update, you can open up, and update, and close down again.

Security is about being paranoid.

[-] [email protected] 1 points 2 years ago

I had to do this with an NVR security camera system I got off Amazon. The NVR ~~is~~ was constantly sending data to servers in China. Using pfSense I put it on it's own VLAN and used firewall rules to stop it from reaching the internet. I also setup an OpenVPN server so i can access it remotely when away from home.

load more comments (2 replies)
this post was submitted on 19 Nov 2023
2 points (100.0% liked)

Home Networking

308 readers
1 users here now

A community to help people learn, install, set up or troubleshoot their home network equipment and solutions.

Rules

founded 2 years ago
MODERATORS