In the modern world where hacking is so prevalent, I can’t imagine the default setting for SyncThing package on Synology is to broadcast its availability to the internet at large while having no need to authenticate for access. I am referring to the warning at the top of the setup page, “Danger! The Syncthing admin interface is configured to allow remote access without a password. This can easily give hackers access to read and change any files on your computer. Please set a GUI Authentication User and Password in the Settings dialog.”
Here is my question: a couple of years ago I installed SyncThing via the Synology package manager intending to set it up to back up one of my USB drives. I never did. Today, while culling unused packages I read the concerning warning mentioned above. DOES THIS MEAN I HAVE BEEN UNWITTINGLY SERVING UP ALL OF MY NAS FILES FOR THE LAST TWO YEARS to anyone who cared to browse them? If so, how can I tell if this happened?
4 posts - 4 participants
