renaissanceboy;163114 Wrote: > first of all: if i forward ports 9000 and 3843 (or whatever they are), > what real-life security risks does that pose?
Anyone and their dog can access your SlimServer. I think to find these in Google you do this: http://www.google.com/search?as_q=&hl=en&num=10&btnG=Google+Search&as_epq=Welcome+to+SlimServer&as_oq=&as_eq=&lr=&as_ft=i&as_filetype=&as_qdr=all&as_occt=title&as_dt=i&as_sitesearch=&as_rights=&safe=off Superficially they can do fun things like start your player at 3 AM :-), disable your alarms or delete all your player preferences. It's more serious if the hacker can manage to crash your SlimServer or cause a buffer overflow as explained in this thread. > second: if i use slimserver's password protection (which i do), does > that offer a significant amount of protection? Some, but it's inconvenient for you and the password is transmitted over the Internet "in the clear", not encrypted. It's probably more secure to whitelist an IP address - see Server Settings - Security - Block Incoming Connections. > third: is it a good idea, as i saw that someone has done, to create a > separate user account for slimserver that only has access to my music > folder? That sounds like a good idea, but I'm wondering how easy it would be. It might also create complications in the future regarding file permissions. -- Mark Lanctot ------------------------------------------------------------------------ Mark Lanctot's Profile: http://forums.slimdevices.com/member.php?userid=2071 View this thread: http://forums.slimdevices.com/showthread.php?t=30564 _______________________________________________ discuss mailing list [email protected] http://lists.slimdevices.com/lists/listinfo/discuss
