Hi, I had to do a factory reset (to fix lost access when I set to static IP); and I learned how easy it is to reset admin password. This may be helpful to me, but it’s also a security risk.
1) Password Reset:
Anyone can walk in the room, reset the device, and then gain admin access and thus access to my passworded shares.
What can be done to prevent this and/or add another layer of restricted access/password before resetting admin pass?
2) Physical threats to drives:
I’m not sure of the admin-benefit of easy-to-pull out drives from a backup NAS (that should have the drives moved the least as possible); but the drives are TOO easy to take out by thieves. They can take out the drives, put them in a new enclosure and bypass the passworded shares.
What can I do to prevent this? I was thinking of buying a cage made for drives (with vents), and lock it closed. I found giant server racks (too big). Anyone have a link or example that is cost and size friendly, but still has a lock?
I saw this, but those locks look small, generic, and easy to pick.
edit: PS. I notice you guys comment on the heat and fan not turning on… If I did put this NAS into an enclosure… and temp increased, then what temp is too high?
3) Harddrive encrpytion:
I bought this because it had harddrive encrpytion as an option. But I do not know how to do this, nor the risk vs reward.
I read for another WD product that if the enclosure failed with the drives encrypted… then the user would be locked out of the data with no method of recovery.
Can anyone provide me with more info of harddrive encrpytion on this unit, and the long term risks from enclosure failure?
Examples:
“WD My Book Duo data forever lost if Drive Enclosure Dies!!”
Im uncertain if this applies to the EX2? “WD SmartWare Security: Encryption”
Thanks