Securing your home NAS box

I recently built a NAS box to backup personal documents and media streaming, based on headless Ubuntu install and the excellent HP NL54 ProLiant Micro Server. There are tons of helpful material out there on setting up the server and support/discussion threads like this and this, so there isn’t much to add to the set-up process.

Strangely enough, most setup articles I came across ignored steps needed to secure the box, perhaps because unlike me, most people access their NAS boxes locally? Whatever the reasons, it doesn’t take much to secure your box from unwelcome guests and the minimum that you should do is:

  1. Disable root access to the box
  2. Add a new new user (and only user ideally) representing you only with administrative privileges and
  3. Secure remote login to your box over SSH

Personally for me, that’s good enough. Optionally, you can enable a firewall and take actions to prevent brute force access attempts on your box, the former maybe even less so important since it’s likely that your NAS box is already behind a home router that’s running a firewall with it’s own DDoS protection.

For the basic steps and advanced options, have a look at this excellent write-up. The comments thread is also worth reading too.

2000-2009. The Last 10 Years in Picture.

From the New York Times, a pictorial summary of the first decade of the 21st century. It was meant to be a new era; a new millennium and a fresh beginning; but how it turned out to be a series of blunders and disasters. What will the next 10 years hold for us?

As one fellow redditor point’s out, “A tsunami that killed a quarter million people is next to guitar simulating video game. That sort of sums up the decade… catastrophic events and consumerism-fuelled apathy.”

Phillip Niemeyer | Picturing the Past 10 Years

Phillip Niemeyer | Picturing the Past 10 Years