Ifinally got my new QNAP NAS. After unboxing, installing hard drives, adding M.2 SSDs, expanding the RAM, and plugging in the cables, I am ready to share you the nine must-use settings for your QNAP NAS.
After logging in and adding your QNAP NAS to myQNAPcloud, you can remotely access your QNAP NAS using a dedicated link (for example: ). No networking expertise is required! Besides NAT traversal, myQNAPcloud can also help you generate your own second-level domain, such as
yourID.myqnapcloud.com.
Significant system resources may be consumed when searching for specific files stored in your QNAP NAS. Indexing your files can greatly assist in optimizing the resource use of finding and accessing files. Generating thumbnails also helps for at-a-glance identification of multimedia files.
Close Topics Topics Cybersecurity Best Practices Cyber Threats and Advisories Critical Infrastructure Security and Resilience Election Security Emergency Communications Industrial Control Systems Information and Communications Technology Supply Chain Security Partnerships and Collaboration Physical Security Risk Management How can we help? GovernmentEducational InstitutionsIndustryState, Local, Tribal, and TerritorialIndividuals and FamiliesSmall and Medium BusinessesFind Help LocallyFaith-Based CommunityExecutivesHigh-Risk Communities Spotlight Resources & Tools Resources & Tools All Resources & Tools Services Programs Resources Training Groups News & Events News & Events News Events Cybersecurity Alerts & Advisories Directives Request a CISA Speaker Congressional Testimony CISA Conferences CISA Live! Careers Careers Benefits & Perks HireVue Applicant Reasonable Accommodations Process Hiring Resume & Application Tips Students & Recent Graduates Veteran and Military Spouses Work @ CISA About About Culture Divisions & Offices Regions Leadership Doing Business with CISA Site Links Reporting Employee and Contractor Misconduct CISA GitHub CISA Central 2023 Year In Review Contact Us Free Cyber Services#protect2024Secure Our WorldShields UpReport A Cyber Issue
All QNAP NAS devices are potentially vulnerable to QSnatch malware if not updated with the latest security fixes. The malware, documented in open-source reports, has infected thousands of devices worldwide with a particularly high number of infections in North America and Europe. Further, once a device has been infected, attackers can prevent administrators from successfully running firmware updates.
CISA and NCSC have identified two campaigns of activity for QSnatch malware. The first campaign likely began in early 2014 and continued until mid-2017, while the second started in late 2018 and was still active in late 2019. The two campaigns are distinguished by the initial payload used as well as some differences in capabilities. This alert focuses on the second campaign as it is the most recent threat.
Although the identities and objectives of the malicious cyber actors using QSnatch are currently unknown, the malware is relatively sophisticated, and the cyber actors demonstrate an awareness of operational security.
Analysis shows a significant number of infected devices. In mid-June 2020, there were approximately 62,000 infected devices worldwide; of these, approximately 7,600 were in the United States and 3,900 were in the United Kingdom. Figure 1 below shows the location of these devices in broad geographic terms.
The following tables provide hashes of related QSnatch samples found in open-source malware repositories. File types fall into two buckets: (1) shell scripts (see table 1) and (2) shell script compiler (SHC)-compiled executable and linking format (ELF) shell scripts (see table 2). One notable point is that some samples intentionally patch the infected QNAP for Samba remote code execution vulnerability CVE-2017-7494.
As stated above, once a device has been infected, attackers have been known to make it impossible for administrators to successfully run the needed firmware updates. This makes it extremely important for organizations to ensure their devices have not been previously compromised. Organizations that are still running a vulnerable version should take the following steps to ensure the device is not left vulnerable:
The usual checks to ensure that the latest updates are installed still apply. To prevent reinfection, this recommendation also applies to devices previously infected with QSnatch but from which the malware has been removed.
But i don't think it will work, or at least this rule will apply to only ONE disk because according to this and this issue the disks are named TR-004 DISK00, TR-004 DISK01, TR-004 DISK02 and TR-004 DISK03. BTW, the mentioned issue does not mention a problem with duplicate serial numbers.
and in this issue you can clearly see the ID_MODEL has underscore when he runs udevadm too & as he said he's running snapRAID I assume that means it's only presenting as 1 disk in OMV and he doesn't have the serial number issue.
I had tried a version like the one you provided however it didn't work. I realize now I think it's because every disk has a different model name so you need to use ID_MODEL_ID. Now I tried with this and it works:
I have now had a TS-212 QNAP NAS for many years and I am really (really!) happy with it: it works exceedingly well for what I originally bought it for (a networked backup drive, essentially) but it has also so many more facilities that I really have come to depend on it for a number of backup and storage tasks.
However, as I mentioned, QNAP really cares about their customers and their support folks prove that: although prevented from providing detailed instructions (suing idiots have probably bitten them in the past) they have been able to provide enough hints so that I could, as it were, self-medicate my NAS.
Once there, fixing the issue is pretty straightforward (note: the actual name of the directory may be different, depending on your QNAP model, you may need to fish around for it under the /share directory):
On QNAP, if selected the Onvif as the camera brand, the port number should be 8000, the port should be the same with the Onvif port number;
If choose Reolink, the port should be the same as the http port number, you can refer to the link here to confirm your camera port.
4. If your camera and QNAP are not in the same network, please make sure the camera Onvif port and RTSP port are forwarded properly on your router, then add the camera with your QNAP by router Wan ip+onvif port.
5. If the test succeeds, but there is no image, please check the resolution you set in QNAP supported by Reolink camera, you can refer to the link here to check the camera resolution, then comparing with the resolution in your set in QNAP.
For those of you with a NAS, especially QNAP brand, I wanted to share ways that I am utilizing my NAS for various integrations. I don't have any familiarity with other NAS brands like Synology but I understand that many support Docker containers so these may be possible on those devices as well. Feel free to comment with other ways you are using your NAS for HE integrations.
@ritchierich, I'm glad you decided to share this. I have it installed on my Dev hub and use it together with RM to shutdown my main hub if I have an extended power outage and the battery falls below 30%. Works perfectly as designed.
Unfortunately my Qnap does not support Container Station but I'm looking to upgrade as soon as I can gather the funds. Then I can move the NR instance, influxdb and Grafana from my win10 box to my Nas.
There is a program called "winnut" that you can install on the windows box and then set it up as another IP within QNAP to talk to. The winnut code is very old but it still works on one of my PCs. Here is a very old post of mine on the QNAP forum with some details:
=33248
Which version of Nodejs are you running? I've got 12.4.0 successfully setup but I'm having cookie issues and can't get the AlexaTTS setup to work. I keep getting an invalid cookie message notification from Hubitat Just want to rule out it's not a version problem I'm having.
If you look at the second post in this thread, it shows my RM setup. I included a second condition that also checks if the UPS is on mains or battery power. If the battery is on mains (restoring charge), it won't shut down.
Also keep in mind, I'm sending the shutdown command from my Dev hub to my Main hub. If you are sending the shutdown command To and From the same hub (it's shutting itself down) you would need to use a different port. I use port 8080 and others have reported success with port 8081....so you command would be:
:8080/hub/shutdown
I love my QNAP. I use containers for Node-red for Harmony Hub programming and backups and whatever else I can come up with, Node.js running Cast-web API for all my Google Home, Chromecast devices, etc., and SmartThings Node Proxy for integration with my Honeywell alarm system. I also have, at any given time, a couple of other docker containers running for testing this or that.
3a8082e126