I’m a little bit torn on this one, we’re talking 10-15 year old devices here. The number of companies that will continue to produce emergency security patches for their hardware so old and having reached EOL four years ago in 2020 are few and far between. Caveat Emptor most definitely, but if you’re someone who likes to keep their tech running forever, you’re going to need to get creative, when the manufacturer eventually stops patching. For this particular instance, I’d recommend placing the unit behind a vpn on the lan.
When you make convenience your priority, you’re gonna give up some control or security.
The first time I saw vendor-provided access (e.g. WD stuff) about 20 years ago, all I could think is “that’s a bad idea”. I’ve never owned this kind of product for just that reason - you’re trusting a third party to handle stuff correctly with no recourse if they screw up.
It’s not like a business contracting with a hosting service, with clear penalties in the contract.
I’m a little bit torn on this one, we’re talking 10-15 year old devices here. The number of companies that will continue to produce emergency security patches for their hardware so old and having reached EOL four years ago in 2020 are few and far between. Caveat Emptor most definitely, but if you’re someone who likes to keep their tech running forever, you’re going to need to get creative, when the manufacturer eventually stops patching. For this particular instance, I’d recommend placing the unit behind a vpn on the lan.
Which is where it should’ve always been anyway.
When you make convenience your priority, you’re gonna give up some control or security.
The first time I saw vendor-provided access (e.g. WD stuff) about 20 years ago, all I could think is “that’s a bad idea”. I’ve never owned this kind of product for just that reason - you’re trusting a third party to handle stuff correctly with no recourse if they screw up.
It’s not like a business contracting with a hosting service, with clear penalties in the contract.