SynoLocker demands 0.6 Bitcoin to decrypt Synology NAS devices

It’s not clear yet how SynoLocker’s operators installed the malware, for example, if they had exploited a vulnerability in Synology devices. CSO Australia has asked Synology for comment and will update the story if it receives one.

According to the victim, Synology’s support team are interested in hearing from victims who have not reinstalled its Linux-based DiskStation Manager NAS operating system. Synology’s NAS devices were hit late last year by scammers looking to use their compute power to mine several cryptocurrencies, including Bitcoin.

via SynoLocker demands 0.6 Bitcoin to decrypt Synology NAS devices – CSO | The Resource for Data Security Executives.

Having proper backups would thwart this attack.  Simply wipe the box and rebuild the NAS.

Critical NETGEAR ReadyNAS Frontview security vulnerability

Frontview is the ReadyNAS web management interface; the vulnerability allows command injection and fails to validate or sanitize user input and can be triggered without authentication, Young said.

“The consequence is that an unauthenticated HTTP request can inject arbitrary Perl code to run on the server,” Young wrote on the Tripwire blog. “Naturally, this includes the ability to execute commands on the ReadyNAS embedded Linux in the context of the Apache web server.”

via Critical NETGEAR ReadyNAS Frontview security vulnerability | Threatpost | The First Stop For Security News.

Hacking and Rooting SOHO Home Routers

In a previous report, we released a list of SOHO router vulnerabiltiies and showed proof-of-concept (PoC) attack code for how to exploit them. For many of these routers, those PoCs operated through the main web-based interface. In this follow up study, we addressed only the extraneous, non-router services that were present on the routers. What we found was that of the 10 routers reviewed, all 10 could be compromised from the (wireless) LAN once a router had USB attached storage connected.

via Hacking and Rooting SOHO Home Routers.

This is hardly surprising.  Currently I only use SOHO routers as dumb wifi access points and that’s it.  I don’t know why anyone would want to make one of these cheaply built devices into some kind of NAS.

State of the NAS: private clouds and an app platform

Just as significantly, the firmware that many companies are offering is now extensible. Most NAS boxes are Linux systems, and it’s often been possible to ssh in and install software on them. But several companies are currently offering something that looks suspiciously like an app store, where NAS users can do one-click installs of additional features.

via State of the NAS: private clouds and an app platform | Ars Technica.

The main challenge is that all these options add a degree of complexity to managing things, some on the NAS itself, and some in terms of integrating it with your router, software, etc. Finding the software and firmware with the right balance for you is probably more important than picking your hardware. Of the ones we’ve tried, we’re partial to Synology’s firmware (some of us exceedingly fond) because of its huge range of capabilities and frequent updates that add even more. But if you can, try a few

Synology Network Attached Storage – DS1812+ Products

iSCSI is also supported as the ideal alternative to SAN solution for business. Affordable and cost-effective iSCSI allows large scale business to consolidate storage into data center storage arrays while providing hosts with the illusion of locally-attached disks. With the iSCSI support, DS1812+ provides a seamless storage solution for virtualization servers, such as VMware, Citrix, and Hyper-V.

via Synology Network Attached Storage – DS1812+ Products.

NAS shoot-out: 5 storage servers battle for business

With so many use cases and potential buyers, the vendors too often try to be everything to everyone. The result is a class of products that suffers from an identity crisis — so-called business storage solutions that are overloaded with consumer features and missing the ease and simplicity that business users require.

via NAS shoot-out: 5 storage servers battle for business | Storage – InfoWorld.

I found the below snippet to be interesting.

Connecting the NAS boxes to your network should be done via a wired Ethernet cable, and each NAS in this roundup should get two Gigabit Ethernet connections. Strictly speaking, you need only one of these links, but by using both, you gain much greater flexibility. You should use them in a fail-over configuration, which means that if one of your Ethernet cables loses signal, the other will take over. You should also “bond” the two connections together to increase throughput or to balance the network load.

Also.

NAS shoot-out: Everything else but the kitchen sink
All of the NAS boxes in this roundup have the flexibility to do more than merely store your data. These features are too numerous to review in detail, but they include such things as the ability to collect images from IP video surveillance cameras, mobile apps that allow you to access your data from iPhones, iPads, and Android devices, and multimedia servers that provide access to photos, music, and video.

In addition to the built-in features, you can generally install software packages that extend the functionality. Typical add-on modules include BitTorrent downloaders, email servers, and content management and blog publishing applications.

Server Message Block

In computer networking, Server Message Block (SMB), also known as Common Internet File System (CIFS, /ˈsɪfs/) operates as an application-layer network protocol[1] mainly used to provide shared access to files, printers, serial ports, and miscellaneous communications between nodes on a network. It also provides an authenticated inter-process communication mechanism. Most usage of SMB involves computers running Microsoft Windows, where it was known as “Microsoft Windows Network” before the subsequent introduction of Active Directory. Corresponding Windows services have names “server” (for a server part) and “workstation” (for a client part).

via Server Message Block – Wikipedia, the free encyclopedia.

How to hot-swap SATA drives in Linux

If you want the drives to be automounted and your automount system uses pmount to do the mounting (pmount allows mounting by a normal user without an entry in /etc/fstab) you may need to edit /etc/pmount.allow. If the drives are seen as non-removable, which SATA hard disks usually are, pmount will refuse to mount them unless you add the device name to /etc/pmount.allow, for example.

echo ‘/dev/sdb1’ >>/etc/pmount.allow

echo ‘/dev/sdc[123]’ >>/etc/pmount.allow

echo ‘/dev/sdd*’ >>/etc/pmount.allow

The first allows one particular partition to be mounted by pmount, the second example permits three specific partitions on a drive, while the third lets through every partition on a drive. Note the use of single quotes to stop the shell interpreting the wildcards.

via How to hot-swap SATA drives in Linux | TuxRadar Linux.

How to configure OpenFiler iSCSI Storage for use with VMware ESX.

I wanted to test an Openfiler as a solution forHA and vMotion with ESX Server and vCenter. Using Openfiler is a great way to save some money on expensive SANs and for home lab testing and learning, this choice is just great. I did not have 3 physical boxes (2 for ESX hosts and one for Openfiler) so I opted for a hybrid solution, where I’m actually running one ESX server inside of VMware workstation.

via How to configure OpenFiler iSCSI Storage for use with VMware ESX. | ESX Virtualization.