Given how notorious the Chinese government is in forcing local companies to add spyware to their products or store encrypted data for future decryption when quantum computers will become more feasible (e.g. Huawei), how secure do you think their Terramaster NAS products are? Is it worth the cost or is it best to just steer clear of these?

  • kkjdroid@alien.topBEnglish
    1·
    1 year ago

    I prefer devices that might be compromised by the Chinese government to those possibly compromised by the US government. If the PRC has significant influence over my life, it’s probably because of WWIII, whereas the USA screws me over enough as is.

  • lucads87@alien.topBEnglish
    1·
    1 year ago

    Genuinely asking: in case the device actually has a malicious back door (et similia threat), can it be reflashed with an Open Source OS?

  • dopeytree@alien.topBEnglish
    1·
    1 year ago

    If you take it and install UNRAID or your own choice of Linux server it should be safe. If you’re super worried just block it from the internet.

  • povlhp@alien.topBEnglish
    1·
    1 year ago

    With all those “smart” devices (Including Internet of Crap), the rule of thumb is to put them on their own VLAN. Then put network filtering in place, such that nothing can talk out of this VLAN. And all you client devices that needs Internet access can then talk to them in the other VLAN.

    You could allow specific destinations for them, but even DNS, it is better to just have a service exposed to them that only uses a hosts file to avoid VPN or exfiltration over DNS.

    That is best practice. If you want to run a software update, you can open up, and update, and close down again.

    Security is about being paranoid.

      • povlhp@alien.topBEnglish
        1·
        1 year ago

        You just need something that can act as firewall betweent he 2 networks, say a Linux box, and then have different SSID for secure and china devices, and VLANs.

        OpenWRT is a good thing to have on your APs.

        VLAN and firewall are the things to google.

    • tagit446@alien.topBEnglish
      1·
      1 year ago

      I had to do this with an NVR security camera system I got off Amazon. The NVR is was constantly sending data to servers in China. Using pfSense I put it on it’s own VLAN and used firewall rules to stop it from reaching the internet. I also setup an OpenVPN server so i can access it remotely when away from home.

  • Knurpel@alien.topBEnglish
    1·
    1 year ago

    What Terramaster data security and user privacy? Replace their wretched TOS with a vanilla Linux distro, case closed.

  • pbx1123@alien.topBEnglish
    1·
    1 year ago

    Commun sense people

    Stop buying just bc is cheap.or has a new tech or proccesor etc

    Unless you dont give two cents about what you store or what network you plug it in

  • Sa-SaKeBeltalowda@alien.topBEnglish
    1·
    1 year ago

    Under sensible configuration they can be OK. If look at it from vulnerability perspective, most of those devices are running Linux of some sort, so they all are vulnerable, unless updated frequently. A lot of vulnerabilities can be used to create backdoor, so it’s like one more or one less. But if you cut it off from internet and access it only from LAN or VPN, how those vulnerabilities will affect you? If there is opensoyrce firmware for it, like true storage or openwrt, that should cover you from built-in backdoors. I would only question hardware quality.

  • Tom0laSFW@alien.topBEnglish
    1·
    1 year ago

    There’s an old joke in infosec about wanting firewalls made by every different nation. You want a Cisco device, that has back doors for the Americans, a Huawei device that has Chinese back doors, and a Juniper device with Israeli back doors. Put them all together and you should be good

  • mbspark77@alien.topBEnglish
    1·
    1 year ago

    There’s no such thing as a “Privately Owned Business” in China…the CCP will always be a shareholder