It is currently Thu Dec 03, 2020 4:14 pm
All times are UTC + 8 hours

[Feature Request] Separate SFTP server on the NAS

[Feature Request] Separate SFTP server on the NAS

Postby dstel » Sun Oct 25, 2020 6:01 pm

Hello,

I would like to be able to allow internet SFTP connections to my NAS. I know how to do it (port forwarding, dns, etc). My concern is about security.

I would like to be able to start another SFTP servers that only chosen users can connect. I'll then port forward outside SFTP to this server port and be able to put very high security passwords for my friends. My family accounts can't be exposed to internet since their passwords are not very strong.

If anyone has a suggestion about how it can be technically done, I'm listening (and make my family choose strong password will not work).
dstel
 
Posts: 17
Joined: Thu Oct 15, 2020 2:07 am

Re: [Feature Request] Separate SFTP server on the NAS

Postby orion » Mon Oct 26, 2020 10:33 am

I think it's good to setup SFTP with a strong password. However, if I were you, I'll change port number. After all, a lot of robo intruders on internet are trying to guess different passwords for well-known internet services. Even if the password is strong enough, your CPU sill needs to process those fake requests.
User avatar
orion
 
Posts: 2792
Joined: Wed May 29, 2013 11:09 am

Re: [Feature Request] Separate SFTP server on the NAS

Postby father.mande » Mon Oct 26, 2020 5:14 pm

Hi,

If you have some knowledge in Linux, you can try to install Entware APKG (1900+ packages) and start your private SFTP (openssh-sftp-server - 8.3p1-2 - OpenSSH SFTP server)with private port.
Entware have a mechanism (based on init.d) to start services / servers at Entware start time.

Entware used by default same (link to) passwd, shadow, group (and if need gshadow, shells (rare to be changed)) BUT it's possible to use separate users ... this require to use Entware Busybox and / or adduser, this tools search for /opt/etc ... so manage the separate one ... where A.D.M. tools search only in /etc ... so this require to be organized ...

Philippe.
AS5202T /AS5002T / AS202TE / AS1002T
My Blog specific to my APKG : https://blog.father-mande.ovh/
User avatar
father.mande
 
Posts: 1047
Joined: Sat Sep 12, 2015 2:55 am

Re: [Feature Request] Separate SFTP server on the NAS

Postby dstel » Thu Nov 05, 2020 2:16 am

I solved this issue by installing a atmoz/sftp container in portainer.
dstel
 
Posts: 17
Joined: Thu Oct 15, 2020 2:07 am

Return to ADM general

  • You cannot post new topics in this forum
    You cannot reply to topics in this forum
    You cannot edit your posts in this forum
    You cannot delete your posts in this forum
    You cannot post attachments in this forum
  • Who is online

    Users browsing this forum: No registered users and 3 guests

cron