Hi, at the risk of having my head chewed off (like someone else in a similar thread: Not Secured Connection on Local LAN?) I am asking if there is a security risk when I get an SSL Certificate (so I can log in to DSM via https)
In short: is there a way to enable HTTPS without exposing any information about our NAS, including the fact that it exists? We are LAN-only access right now.
My experience with websites and servers does included SSL Certificates, and adjusting the appropriate DNS records and nameservers. But that's always been for public/www websites I was working on. So I have the concept of getting a certificate signed, etc.
This new Synology NAS is local-only, and for now, we are keeping it local (LAN) access only. I think HTTPS is a good idea, because standard HTTP connections have been called insecure for many years now. Maybe HTTPS isn't needed for local-only access?
In all my research, it seems like if I want to access via https, I need an SSL certificate. Once I do that, I have to register a unique domain name (Don't want to use any current domain name we have for our website(s).) It seems like registering a domain name is a 'public' action that anyone can see if they really wanted to. Does that open the NAS up to potential attack?
Thank you very much!
In short: is there a way to enable HTTPS without exposing any information about our NAS, including the fact that it exists? We are LAN-only access right now.
My experience with websites and servers does included SSL Certificates, and adjusting the appropriate DNS records and nameservers. But that's always been for public/www websites I was working on. So I have the concept of getting a certificate signed, etc.
This new Synology NAS is local-only, and for now, we are keeping it local (LAN) access only. I think HTTPS is a good idea, because standard HTTP connections have been called insecure for many years now. Maybe HTTPS isn't needed for local-only access?
In all my research, it seems like if I want to access via https, I need an SSL certificate. Once I do that, I have to register a unique domain name (Don't want to use any current domain name we have for our website(s).) It seems like registering a domain name is a 'public' action that anyone can see if they really wanted to. Does that open the NAS up to potential attack?
Thank you very much!