Secure the login (2fa, fail2ban, ...)


expose the GUI to the internet  

42 members have voted

You do not have permission to vote in this poll, or see the poll results. Please sign in or register to vote in this poll.

Recommended Posts

It would be great if we can expose the GUI easily to the Internet. The major concerns with that ...

 

- the default user named 'root'
- no 2-FA
- no fail2ban

- ... 

 

I know there is always a way to get things up and running, but it would be awesome to see this as default options in a future release. so, please add those features as a default to this already great product. 

 

(I read about that, but its outdated)

Edited by odiby
Link to comment

It is easy to set up the WireGuard VPN server on the 6.8.3 version of Unraid to give you secure access to the Unraid GUI from then internet.   More than this might be desirable, but at the very least users should be using a VPN solution for accessing the Unraid GUI from the internet.

  • Like 1
Link to comment

Oh ok, thats easy. I found that guide for all of you who would like to give that solution a try. I can easy set up a VPN in my unifi controller... but I guess it is way more user friendly to access the server via a subdomain for example. From the security point of view, that should not be a huge problem with the mentioned provisions.

Edited by odiby
link to guide added
Link to comment

@odiby It's always a bad idea to expose your server directly to the internet. We had a couple people already in the forums which thought it is a good idea to place there servers in a DMZ, no extra firewall or security features of their routers active. And what happened was they got bombarded with thousands of login attempts, flooding the logs, crashing the server.  Even with whitlists for accesing the server or 2FA the servers will be flooded with traffic from unknown sources. With no extra infrastructure you won't be able to prevent this from happening. Best practise is to use a vpn to access your data and with wireguard and openvpn you have all the tools you need.

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.