NAS

Moderators
  • Posts

    5023
  • Joined

  • Last visited

  • Days Won

    1

Posts posted by NAS

  1. Has any discussion happened on mechanic disk head parking on umount?

     

    When I press the interface button to umount and then physically power off the drive I can clearly hear the disk doing something that sounds a little awful.

     

    As an experiment, immediately after pressing the interface button, I issued the following command to the external USB disk:

     

    hdparm -y /dev/sdt

     

    and whilst I get an error:
     

     issuing standby command
    SG_IO: bad/missing sense data, sb[]:  f0 00 01 00 50 40 00 0a 00 00 00 00 00 1d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

     

    it seems to work and powering off the disk sounds less harsh.

     

    This is proof of concept only, just enough to check the theory to open a post here for discussion.

     

  2. Thank you. Even after mounting countless hundreds of disk using UD I was not aware of those settings in the GUI at all. Perhaps that hints at either PEBCAK or an area where interface changes would help.

     

    As for image work, I cited that specific example as it was easy to do using the wiki itself but other examples include the more mundane tasks of backing up disks, thumb drives, RPI SD cards etc but I accept that these examples whilst not disk recovery are still intended more for the sysop than the average user.

     

    Thank you for the education and consideration.

  3. 51 minutes ago, dlandon said:

    What is it you are trying to accomplish?  I don't understand the use case you are asking for.

     

    Nothing especially complicated I am just suggesting that disks should only be mounted RW if you actually need RW. Failing that an option that allows you chose RO.

     

    For example if you are loading data from a backup then RO would be a safer option especially in the scenario where you are needing to restore from backup in the first place.

     

    As for working with images this gives a practical example of a use case https://wiki.unraid.net/Manual/Troubleshooting#Using_ddrescue_to_recover_data_from_a_failing_disk

  4. On 10/2/2021 at 2:29 PM, NAS said:

    Apologies if this is covered in the previous 252 pages but has consideration been given to adding the ability to mount and/or create disk/partition images (typically using dd in the background)

     

    Perhaps niche but genuinely useful especially if RO mode is an option.

    Any thoughts on this?

     

    If image options are out of scope please consider the read only mount option.

     

    There is a lot to be said to mounting disks RO by default with an option to seamlessly remount RW if needed.

  5. This clearly falls within the bounds of the release methodology. I appreciate the conflicting pressures and associated costs but its time, 332 days between security releases is pushing it a bit.

     

      

    On 9/2/2015 at 6:11 PM, limetech said:

    At present we are maintaining two code branches:  latest stable and development.

     

    The latest stable is always the first entry listed under Stable Releases on the website Download page.  The development releases are only publicized in the forum Announcement board.

     

    If a relevant Slackware Security Advisory package update becomes available (or other kind of security update), we update both the latest stable and development branches.  For the latest stable branch, we then increment the patch level of the release version (the third digit) and publish the new release as soon as practical.  Other critical bug fixes may also trigger publishing another latest stable patch release.

     

    Of the stable releases listed on the Download page, only the latest stable will be updated.  That is, we do not maintain multiple old stable releases at this time.  Updates are free and users are encouraged to keep up-to-date.

     

    For the development branch, an updated release may or may not be published at the same time as the new stable release, but any package updates or bug fixes which go into latest stable are first integrated into development and tested.

     

    Anyone who discovers a security-related issue is encouraged to post here so that we can integrate necessary patches in a timely manner.

     

    • Like 3
  6. I was indeed agreeing.

     

    Just for clarity the normal security reporting methodology is to start with private contact. Normally this is for unpublished vulnerabilities but it holds equally true for published ones where the vendor may just not have noticed or has noticed and something has went wrong and they wrongly assume fixes are in place. It is VERY common for vendors to patch, release but not pen test the actual release after.

     

    After a reasonable period of time if unresolved you can and should then post publicly so that users who are vulnerable have the maximum chance to hear about it and make and informed decision on what the risk is to them and how to handle it.

     

    I dont think it would be unfair to say no one in the history of this project has prodded more about security then me.

     

    I am not and never have been an employee of Limetech LLC and have never received any monetary of gift rewards other than a single license for testing.

    • Like 1
  7. It is important that users who choose a non subscription model, even if that is just implicit by the fact they use only the traditional unRAID product, that there be no phone home or other services that reach out of the system by lieu of the subscription services running in "off" mode of or any other mechanism.

     

    I cannot stress this enough. Feel free to add value in whatever way suits your business but dont break that trust model whilst doing so.

    • Like 2
  8. Whilst it is not ideal that the poster did not follow normal security reporting etiquette it is clear there is an issue and it is off our own making.

     

    See

     

    versus

     

    http://www.slackware.com/security/list.php?l=slackware-security&y=2020

     

    tl;dr we are long overdue an update but we have slipped into the old habit of waiting for the development branch to be ready and ignoring the stable branch.

     

    It is not the end of the world but its a habit we need to break again ASAP

    • Like 3
  9. This is a very interesting poll and I commend the people responsible.

     

    I do however question why `SSD Array option with Trim support` is on this poll though.

     

    The other items in the poll are feature enhancements, nice to haves or power user edge cases..... but supporting SSDs in 2020 should be a basic capability for a NAS not something we poll to see if its optionally wanted.

    • Like 1
  10. On 6/4/2019 at 6:09 AM, bonienl said:

    Docker containers and VMs on the dashboard are loaded in the background.

    If something is amiss with either the Docker or libvirt service, it would hamper the dashboard.

    I think I can actually replicate this now.

     

    If i mount a USB drive and copy files continuously to my SSD cache drive which also is the location of my docker loopback image then after a few minutes docker starts to not respond which obviously ruins the web GUI as well.

     

    I routinely copied files in this way in all previous versions and the cache drive seems fine (its pretty new) and there are no errors in any log that I can see.

     

    The SSD is attached to a motherboard SATA port directly.

     

    I am pretty sure it is IO WAIT as load sky rockets. Will wait and see if its an "only me" problem.

     

  11. 5 hours ago, testdasi said:

    I think the summary of this plugin is, unless you are a spy, use it. :D

     

    (based on Unraid functionalities, I doubt there's any financial institution or cloud / VM provider using it)

    Except if you a company or any public body or a registered non profit or anyone with liability cover or any organization that has to comply is ISO accreditation or worldwide equivs or has independent audits or anyone covered by EU GDPR or or....

     

    context is import and whilst most people here are home users plenty unRAID users are not :)

     

    Nice addon. I really mean that. It absolutely has its place but the default advice should always be "be secure unless you really really understand the risks of not being".

  12. I faced an odd issue where the web gui would load but not completely. Specifically the dash wouldnt load but disk view would excluding the action buttons at the bottom. Docker view wouldnt load at all but settings would. Dockers containers did not work or were super slow (hard to say)

     

    Manually restarting one container instantly kicked web gui and docker into a working state.

     

    I cant replicate.

  13. Sorry if this is obvious but I cant quite nail it down.

     

    I have a need for a thing I am doing to find the device name and disk serial starting knowing either "/mnt/disk4" or "/dev/md4" from the shell

     

    Does anyone know how to get for example "/dev/sdb1"  from this?

     

     

    • Like 1