Synology NAS Attack

I think that we have to remember that people only tend to post on the Synology forums if they have a problem. (I don't stream video.)

I am concerned that Microsoft are going to abandon the lovelly look of Windows 8 in the next release just because a few people can't cope with change.

 

Originally posted by Graeme

 

"Hmack

 

i did test DSM5 on my 212j but found when minimserver was transcoding 24/192 files resources were maxed out so reverted back to DSM3.2. Although i didn't get any drop outs i thought it a possibility with no overhead available. 

 

Graeme"

 

 

Thanks for this Graeme. I don't personally transcode any of my music on the fly, so I don't think that this would be an issue for me, However, I am a little worried about reported problems with video streaming using DSM 5.0.

 

On a slightly lighter note, don't you think Bart's aesthetic tastes are a little flawed - a very intelligent chappie apparently, but he actually appears to like the look of the new DSM?  

 

         

 

<script type="text/javascript">// <![CDATA[ isReplyLiked.set('40284010783306815', false); // ]]></script>                   Like        (0 likes)        

 

I cant say anything im still in the last century with my version 

Bananahead posted

"I think that we have to remember that people only tend to post on the Synology forums if they have a problem. (I don't stream video.)

I am concerned that Microsoft are going to abandon the lovelly look of Windows 8 in the next release just because a few people can't cope with change".

Touche!

and I also take your point about forums (apart from the Naim forum of course!)

No I don't stream video.  For me, the newer / newest version has retained all the functionality I need.  If an 'updated' version destroys / lessens functionality, then yes I agree that's a problem.  (There is precedent for this with Synology; waiting just a day or two or three for such to be noticed and appear on their forums is a reasonable strategy.)

The looks are largely irrelevant to me There are icons and I click 'em.

It's just a Linux box so you can also use it via the command line 

http://forum.synology.com/wiki...mmand_Line_Interface

Just in case anyone else on this forum uses their Synology NAS to stream video to a Smart TV, I can confirm that the issues reported on the Synology forum do indeed exist. I had already upgraded to DSM 4.3-3827 which is not the latest version of the DSM, but reckoned to be safe.

I am about to upgrade to the latest version of the DSM (5.0-?), but thought I would run a number of video streaming tests first. My older version of the DSM (can't remember exactly which version I had up-and-running before my upgrade) was able to stream HD video (raw AVCHD) to my Smart TV more or less seamlessly. Unfortunately, following my upgrade to 4.3-3827, AVCHD HD video streaming is very badly flawed - plays for about 5 seconds then breaks up really badly. Older non AVCHD videos do still stream ok.

So, it looks as though the issue with HD video streaming was introduced by an earlier upgrade, and so my concerns about DSM 5.0 aren't really valid. The damage is already done. Time to complain to Synology - but I don't hold out much hope for a resolution.

For security reasons, it would be daft not to go ahead and upgrade to the latest version of DSM 5.0.

But Bart, I still think the new look sucks!

Here goes.

Well - credit to Synology! The upgrade to DSM 5.0-4493 (Update 3) went absolutely seamlessly, and do you know what? The new look interface isn't so bad after all.

I have also discovered that while I still have a problem streaming AVCHD to my Smart TV, streaming AVCHD to my PC still works absolutely flawlessly. Looks as though the problem (in my case) may not be with the NAS & DSM, but might lie elsewhere.

I would now add my weight behind Mike, Bart and Bananahead (great moniker by the way), and recommend that you upgrade to the latest (hopefully safe) version of the DSM asap.     

Thanks again.

Mike - thanks for raising this. My 213j is now completely updated and I can sleep soundly in my bed. If only updating Naim streamers was so easy!

Good morning HH,  glad you slept well

Now, here is the latest news   ..........

Dear Synology users,

We have discovered security vulnerabilities on the software currently installed on your Synology product. These vulnerabilities might result in unauthorized parties compromising your Synology product.

We strongly suggest you install the newest version of DSM as soon as possible. To do so, please visit our Download Center and download DSM 5.0-4493, DSM 4.3-3827, DSM 4.2-3250, or DSM 4.0-2263 according to your current version. Then, log in to DSM and go to Control Panel > Update & Restore > DSM Update > Manual DSM Update (for DSM 4.3 and earlier, please go to Control Panel > DSM Update > Manual DSM Update) and manually install the patch file.

For more information about security issues related to Synology products, please check our Synology Product Security Advisory page.

Running the latest version of DSM is essential to guarantee your Synology product is protected from threats fixed in previous versions. In this respect, we are no longer providing DDNS and QuickConnect services for Synology products that are running vulnerable versions of DSM. To continue enjoying Synology’s DDNS and QuickConnect service, please follow the instructions above to update your Synology product.

We apologize for any inconvenience caused by this issue. Should you encounter any further problems, please feel free to contact our technical support team.

Sincerely,

Synology Development Team

New DSM update is available & I guess the first 2 items ends the ransomware raid risk   .............

Version: 5.0-4493 Update 4  (2014/08/26)

Fixed Issues

1. Upgraded OpenSSL to Version 1.0.1i to fix multiple security issues (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, and CVE-2014-3470).
2. Implemented fixes for Kerberos 5 to address multiple security issues that allow remote attackers to cause a denial of service (CVE-2012-1013, CVE-2014-4341, CVE-2014-4342, CVE-2014-4344).
3. Fixed an issue where files with ACL attributes could become inaccessible after being loaded in large batches when DiskStation acts as an NFS server.
4. Fixed an issue where the restore might not be successful when containing multiple subfolders in Time Backup.
5. Fixed an issue where DHCP server service does not map to the correct VLAN interface if the service started before VLAN is enabled.

Thats good to know as i received my DS414 yesterday and its in the process of formatting. 

Looks of any operating system should always takes a humungously distant second place to the security and stability of the latest version.

System updates are overwhelmingly not about eye candy, they're about bug fixes, fixing vulnerabilities that ALL operating systems have so you're basically chancing it by not updating.

The longer any OS version is out there in public land, the longer hackers and the like have to find vulnerabilities in it.  As soon as the company concerned becomes aware that a part of their OS has been compromised, they start working on a fix.  People really should apply these fixes/updates asap.

Having formerly been a completely satisfied Synology user, I am now experiencing a few problems - anyone else similarly affected?

I am currently running the latest version of the DSM (5.0.4493 up[date 4), and am experiencing the  following problems. I am not sure which version of my recent upgrades has introduced the problems, but my problems are:

1. problems steaming video (AVCHD) files to my Smart TV - extreme buffering problems

2. CPU now often running at close to 100% - at the moment a process called Synomediaparsed is the main culprit

3. Earlier problems appeared to be related to the creation of thumbnails and indexing shortly after adding a number of digital photos onto the NAS. The indexing process appeared to be taking forever with no apparent way to shut it down.

4 Now having problems with the availability of my music - I appear to have inadvertently started a media re-index whilst trying to resolve some of my other problems.

Anyone else experiencing similar problems, or are you using your NAS purely for music?

I am not aware of these problems existing prior to my recent DSM upgrades.

Hmack,  I have the latest rev DSM (update 4)

All audio files,  no video or photos

Its working just fine  

CPU after initial startup settles to one or other of 1 2 3 & 4% running 16/44.1 files

On 24/192 its mostly at 3 4 & 5%

I dont have any ideas whats going on, but just to tell you I don't think its the new rev DSM

Thanks Mike.

Possibly not an issue with the new DSM, although I do have a very large number of large digital photographs (both hi-res jpegs and RAW) on my NAS - all of my holiday photos and videos dating back many years (including a lot  scanned from film negatives from before I got my first digital camera). Perhaps the sheer number of these (very many gigabytes worth) is causing problems with the Synology media indexing software. 

Been across to have a look at the Synology forum, and a lot of people have posted very similar problems to my own. According to some of them, Synolgy have acknowledged that there is a problem, but no resolution in sight yet.

If these problems persist, I might just have to move my photos and videos off my NAS and onto an alternative storage device - not something I want to do. Much more convenient to have them on a network storage device.

Well - I left my NAS re-indexing overnight, and that seems to have done the trick. Indexing has finally completed (I estimate it took around 20 to 24 hours), CPU usage is now back to normal, and the problems I experienced over the last couple of days on my streamers appear to have gone.

Still a bit annoying, because I expect I'll have similar problems when I next add a large amount of digital photos to my NAS. Looks as though the Synology NAS works superbly well as a streaming source for music, but may have problems coping with very large numbers of non music media files. I hope Synology sorts out these problems soon with a future DSM release.

For the DSM 5 users there is a new update:

Version: 5.0-4493 Update 5    
Improvements
Improve the stability of file copy to encrypted shared folders.
Fixed Issues
Fixed a vulnerability that could allow servers to accept unauthorized access.

Now for the DSM 4 users there is a new update:

Version: 4.3-3827 Update 7    
Fixed Issues
Fixed a vulnerability that could allow servers to accept unauthorized access.

Best if you register at: https://myds.synology.com

And choose your eNews subscription options under "My account".

Then you should be informed in a timely manner...

I get a notification pop up on my DSM icon,  its just asking if I want to.  It means I need to go look in the DSM to see it,  but as of late I seem to do that once or twice a week. 

You can configure DSM to tell you about available updates (and lots of other status info) via email, SMS, or push messaging (including MS Messenger or Skype) in the Control Panel under Notifications. 

Regards alan

Yes,  I have that & should have mentioned it.

Problem is e-mail is a day or two behind the Synology DSM www update indication

Thanks Mike. Agree about the delay, but I only notice that when I log into the device in the window between the icon first appearing and the email arriving. Most often, especially when I'm on the road, it's the email that triggers me. This time out, it was actually your post here on the forum where I first found out, haha and thanks for that too!

Regards alan

Hi Gajdzin,

Actually, no, I did not know this. I did know that you can switch off the creation of thumbnails, but not that you could completely disable re-scanning for photos. I will try configuring this tomorrow. Thanks for the advice.

You also state that transcoding from FLAC to WAV on the fly is now available. I might give this a go as well, although I have to admit that when I originally tested, I could not discern a difference between FLACs and WAVs of the same track on either my ND5 or my Klimax Renew DS. Do you notice a difference?

Thanks,

Hmack