Vue normale

Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
À partir d’avant-hierFlux principal

UGREEN Brand User Q&A – Questions About the New DXP NASync NAS Storage Solution

Par : Rob Andrews
14 mars 2024 à 16:00

Your Questions for UGREEN about their New NAS Solution

With UGREEN still in the process of launching their Kickstarter campaign for a new NAS Storage Solution (the DXP NASync series) to market, many users (myself included) have a lot of questions about the product. Let’s face it, we are not talking about a standard ‘over the counter’ purchase where – this is CROWDFUNDING! Therefore, users need to take extra care and caution before considering putting down money (remember, crowdfunding is not the same as eRetail!). Alot of users want to know just what the UGREEN DXP NAS Storage solution can do, what it can’t do, UGREEN’s plans for the future and…at a very basic level… is the UGREEN NAS actually a ‘thing’! People have been burnt by crowdfunding before, plus UGREEN has no previous recognized experience in the world of NAS, They are definitely SIGNIFICANTLY more established in the tech market (12 years) than many other crowdfunded NAS/Private Cloud solutions that have popped up in the last 1-2 years to challenge the likes of Synology and QNAP, but this is their first NAS. Heck, it’s actually 4-5 different NAS’ arriving at launch – that’s a big, big undertaking! So, l asked you guys to fire me over as many questions as possible to ask the brand directly, and you did not disappoint! I have taken the many, MANY questions that were submitted and condensed them into the 20 questions below. With the crowdfunding launch for their product arriving towards the end of the month. many of the questions below represent users’ reservations and dealbreakers before they are prepared to engage with the brand, the solution and the launch! So, let’s go through the brand’s responses to your Questions.

UGREEN NAS Brand Q&A – The TL;DR

IMPORTANT – The Ugreen Q&A Video goes into ALOT more detail in the responses to each question, so if you want MORE detail, then do watch it HERE and use the chapters on the bottom of the video

I GET IT! You are in a rush! So, here is the short version, the skinny, the cliff notes! I asked 20 questions in total (slightly more in the zoom recording coming to YouTube), and here is the summary of their answers in bullet points:

  • Kickstarter Launch: UGREEN chose Kickstarter to engage with consumers early, gather feedback before official launch, and because other well-known brands have also launched products via crowdfunding.
  • Connectivity: The NAS device supports Thunderbolt connection for host use only, with plans to expand its capabilities. WiFi 6E support on the DXP480T Flash system allows connections both to and from the system, as well as to a router.
  • Third-Party OS Installation: Installing third-party operating systems, like UnRAID or TrueNAS, is not officially supported and voids the warranty.
  • Availability: Initially, the product is available only in Germany, with plans to expand to more regions based on demand.
  • Security: UGREEN is focusing on financial-grade security standards, working on EN303645 and TruestE certification, and plans to enhance security features continuously.
  • Additional Options and Hardware Information: A PledgeBox option will be added during the campaign for adding HDDs and SSDs. Detailed PCIe lane layouts will be available in the product manuals.
  • Remote Access: The UGREEN Link service allows remote access to the NAS via a custom domain name after account registration.
  • Power Consumption: Details on power consumption will be included in the product manual, with specifics available upon request.
  • Kickstarter Campaign Delay: The campaign was delayed to incorporate user feedback on the app for a better user experience.
  • UGREEN OS Features: Support for automatic on/off schedules, SSD caching, full phone storage backup, online data scrubbing/checksumming with BTRFS, and basic to complex RAID configurations.
  • Native Applications and Functions: The NAS will feature a smart assistant for AI-based smart recognition and classification, virtualization, Docker support, and NFS protocol support, but lacks iSCSI support.
  • Future Developments: Some features, like full phone backup and virtualization/Docker support, are still under development.

So, some GOOD news, some BAD news and some ‘TBC’ news. Let’s dig more into the actual Q&A itself and go through those questions, one by one.

The Q&A with UGREEN – Answering Your Questions about their NAS Solution

Below is the written response provided to me by the HQ (handled by Diana An, a Marketing Specialist in conjunction with their product management teams) of UGREEN after submitting my questions, collected from user comments (HERE and HERE) between March 4th and 10th 2024. There is also a Zoom session with UGREEN that will be live soon/now that goes into much greater detail and analysis of these questions and answers, conducted with Hernan Lopez, a U.S.-based UGREEN representative. Questions were provided in advance to UGREEN 48 hours in advance of the Zoom session (timezone dependent) in order to allow UGREEN time to sufficiently source adequate answers. The questions and answers below are provided unedited and unchallenged, but further investigation was conducted in the Zoom recording that is/will be available on the NASCompares Youtube Channel HERE. I should also add that UGREEN has provided me with a DXP4800 PLUS and a DXP480T NAS unit for testing and evaluation, which I will be publishing videos and articles on later this month (hopefully, prior to the launch of the campaign) in order to evaluate these pre-release units and assess the quality of the hardware, software and viability of the solution.

Additionally, I would like to thank the many channel viewers and subscribers for providing the questions for this Q&A. There were around 100+ in total, so I was forced to consolidate them (merging similar/identical questions together, or answering less debated/unanswered questions in those comments of the initial posts (again, see HERE and HERE). Questions below have been credited to numerous YouTube members (denoted by the @ prefix, with my own name there too), but in many cases, the questions were asked by many, many users (eg why Kickstarter?), so I have attributed to just the first 2-3 users). Here is the Q&A:


Why Kickstarter?

  • Why Is UGREEN bringing this NAS solution to Kickstarter/Crowdfunding? UGREEN is an established brand, so why use Crowdfunding for this new product line?

@grege9862 , @InspectorGadget2014

Firstly, The UGREEN NASync is our new product line and we can have pre-connection and pre-communication with the consumers and get their feedback in advance before we bring it on Kickstarter. Secondly, many well-known brands also launched their new product line on kickstarter/Crowdfunding.


  • How is the Thunderbolt connection handled, is it host-only use, or can you connect to it over Thunderbolt (point to point) with a Mac or Windows system?

@michaelpaolini , @ajrfilm9951

Currently, Thunderbolt connection for our device is host only, and can be used for external storage. But some features like Thunderbolt Networking are in our development plan.


  • Same question as above, but for the WiFi 6E support on the DXP480T Flash system – Does this allow connections both TOO the system from a user AND connections for the NAS to a Router?

@DIGIBITE (Eddie!)

The wifi on our 480T device supports both functions above.


  • Is installing 3rd Party OS’, such as UnRAID and TrueNAS, possible and will UGREEN still support the user’s hardware 2-year warranty if they do so?

(@LacayoDe , @herbentroost427, @ghostbaleada , @misku_ , @ttuschak

Unfortunately, modifying the built-in system is not officially supported. It’s not suggested to do so. If users insist on doing it, they will lose the warranty permanently.


  • Why is the Product currently only available to buyers in Germany and the United States, and not the rest of Europe, Australia, and more? Will this change?

@TheFric , @rogerwagner8498 , @ghostbaleada , @misku_ , @herbentroost427 , @ajrfilm9951

Our products are still in their infancy, and when expectations are good, we will gradually expand markets in more regions.


  • What provisions and plans do UGREEN have in place for their systems with regard to security? i.e what is “Financial Grade Security”, will they be publishing security advisories, pen testing, etc?

@michaelpaolini

We will be referring to Professional-grade security standards and continuously optimizing and improving the system’s security features. Currently we are also working on the certification of EN303645 and TruestE.

NOTE from Robbie – This question was expanded upon in the YouTube Q&A, and I recommend watching HERE for a fuller response to this question


  • Will UGREEN be adding a PledgeBox option during their campaign to allow users to add HDDs and SSDs?

@famoussasjohn

Yes, we will add the PledgeBox option during the campaign.


Source www.techpowerup.com
  • Can you provide a breakdown of the PCIe lane layout of each system?

@Latino3650 , @GroundDwellerStudioS

We will have hardware product manuals that will contain device information. The product manual is currently in the editing process. Which model of product do you want to know about? We can send it to you separately first.


  • How will remote access to the UGREEN NAS be conducted via UGREEN services?

@michaelpaolini

To use the UGREEN Link service, you need to register a UGREEN Link account first, then log in to the control panel of the NAS device and set a custom domain name. After applying the settings, you will be assigned the corresponding domain name for remote access.


  • Can you provide further clarification on the power consumption of your devices, even as a level benchmark of a fully populated device during active/passive activity?

@Butyouveheardofme3486 , iVuehl

This information will be described in the product manual, similar to the PCIe issue. If you would like to know about a specific model, we can send it to you separately.


  • Why was the launch of your Kickstarter campaign delayed?

@nascompares

During the public beta period, we collected some user experience optimization suggestions for the App. And we hope to deliver a version with a better experience to everyone, so we delayed the launch for half a month.


  • Does the UGREEN os allow automatic on/off schedule

@overclocked9033

Yes, UGREEN OS supports this schedule and you can customise it in the control panel.


  • Is SSD Cache Supported?

@Fan_de_Parcs

Yes

Yes, you can use a SSD either for cache or storage usage. However, you can’t use the same drive for both caching and storage purposes.


  • Will the mobile software support full phone storage backup?

@Fan_de_Parcs

Yes, this backup function is in our plan and still under development.


  • Does their native OS use a filesystem that can do online data scrubbing / checksumming to detect errors? e.g. BTRFS or ZoL

@Dreamslacker

UGREEN OS supports BTRFS in terms of data scrubbing / checksumming.


  • Will RAID expansion be possible (i.e adding more drives to an existing RAID Pool)

Not possible yet.

(NOTE FROM Me/ Robbie – In a recent software update, I found that a new option is in place for expansions, but it is still WiP. It seems to only reflect INSIDE the system and not a physically connected external expansion however, i.e needs empty bays. See Below)


  • Will you be providing/supporting a flexible RAID system (comparable to Synology Hybrid RAID or Terramaster TRAID)?

@doppelherz

Basic,JBOD,Raid0,Raid1,Raid5,Raid6,Raid10 are supported.


  • On their Kickstarter page is mention of an AI integrated smart assistant, we are curious to know what that means?

@thomasm964

AI Smart Recognition & Classification(without Internet connection), search Pictures by Text. Search for photos of pets, fruits, vehicles or more simply by entering search keywords. Use smart recognition to create photo albums that intelligently identify and classify faces, places, animals, and more. AI service are going to operate in-system and without internet connectivity. If an app or service is installed on the system that requires internet connectivity, this will be made clear in the app release notes and controllable on the system GUI


  • Will there be virtualization and docker support out of the box?

@cyberlando

Yes, virtualization and docker will support out of the box. However, this is still early stage of our beta and these 2 functions are still under development.


  • What is the support/status of NFS Support or iSCSI Target/LUNs?

@dozix88

UGREEN NAS supports the NFS protocol, including NFSv3, NFSv4, NFSv4.1, while iSCSI is not supported.


How much will the UGreen NASync Series Cost and When Will It Launch?

The UGreen NASync series is poised to make a notable entrance into the NAS market with a range of devices that cater to different storage and performance needs. With the Kickstarter launch prices set attractively at $239.99 for the entry-level DXP2800 and scaling up to $899.99 for the high-end DXP8800 Plus, UGreen is competitively positioning its products. The mid-range DXP4800 and DXP4800 Plus are tagged at $359.99 and $419.99 respectively, while the specialized NVMe-focused DXP480T Plus is introduced at $479.99. Post-crowdfunding, the retail prices, also known as the Manufacturer’s Suggested Retail Price (MSRP), are expected to be significantly higher—almost doubling for some models, like the DXP2800 with an MSRP of $399 and the DXP8800 Plus which will retail for $1499. This pricing strategy not only provides an incentive for early backers but also underscores the value proposition of getting in early on the Kickstarter campaign. Nevertheless, THIS IS CROWDFUNDING and therefore not the same as buying from your usual retail outlet, be aware. UGreen is tapping into the growing buzz of middle-ground solutions between turnkey options from Synology/QNAP and BYO/DiY options that retire time and knowledge to build. If you are on the fence, there isn’t a tremendous rush, as crowdfunding officially begins on March 26th (see link below). We will be keeping an eye on this one as the weeks go on!

Click the Link Below to find out more about the UGREEN NASync NAS Series on the brand’s official Site:


 

 

📧 SUBSCRIBE TO OUR NEWSLETTER 🔔
[contact-form-7]
🔒 Join Inner Circle

Get an alert every time something gets added to this specific article!


Want to follow specific category? 📧 Subscribe

This description contains links to Amazon. These links will take you to some of the products mentioned in today's content. As an Amazon Associate, I earn from qualifying purchases. Visit the NASCompares Deal Finder to find the best place to buy this device in your region, based on Service, Support and Reputation - Just Search for your NAS Drive in the Box Below

Need Advice on Data Storage from an Expert?

Finally, for free advice about your setup, just leave a message in the comments below here at NASCompares.com and we will get back to you. Need Help? Where possible (and where appropriate) please provide as much information about your requirements, as then I can arrange the best answer and solution to your needs. Do not worry about your e-mail address being required, it will NOT be used in a mailing list and will NOT be used in any way other than to respond to your enquiry. [contact-form-7] TRY CHAT Terms and Conditions
If you like this service, please consider supporting us. We use affiliate links on the blog allowing NAScompares information and advice service to be free of charge to you.Anything you purchase on the day you click on our links will generate a small commission which isused to run the website. Here is a link for Amazon and B&H.You can also get me a ☕ Ko-fi or old school Paypal. Thanks!To find out more about how to support this advice service check HEREIf you need to fix or configure a NAS, check Fiver Have you thought about helping others with your knowledge? Find Instructions Here  
 
Or support us by using our affiliate links on Amazon UK and Amazon US
    
 
Alternatively, why not ask me on the ASK NASCompares forum, by clicking the button below. This is a community hub that serves as a place that I can answer your question, chew the fat, share new release information and even get corrections posted. I will always get around to answering ALL queries, but as a one-man operation, I cannot promise speed! So by sharing your query in the ASK NASCompares section below, you can get a better range of solutions and suggestions, alongside my own.

☕ WE LOVE COFFEE ☕

 

FeedCord – Pour intégrer des flux RSS dans Discord

Par : Korben
11 mars 2024 à 09:00

Les amis, aujourd’hui, je vais vous parler d’un projet très intéressant qui devrait ravir les utilisateurs de Discord et les amateurs de flux RSS : FeedCord. Ce lecteur RSS ultra simple s’intègre parfaitement avec Discord et vous permet de disposer d’un fil d’actualité directement dans votre serveur Discord.

Je suis depuis toujours un grand défenseur du format RSS et c’est quand même dommage que ça ait presque disparu.

Parmi les principales fonctionnalités de FeedCord, il y a donc l’intégration avec Discord, qui permet d’envoyer directement les mises à jour de vos flux RSS dans un canal Discord via un simple webhook. Côté config, c’est un jeu d’enfant puisque tout se fait dans un simple fichier JSON. Vous y ajoutez votre URL Webhook et vos flux RSS et en avant Guingamp !! FeedCord dispose également une prise en charge via Docker, ce qui facilite grandement le déploiement. C’est d’ailleurs la méthode d’install recommandée par les dev du projet.

Alors, comment installer FeedCord avec Docker ?

Tout d’abord, il vous faudra créer un webhook Discord.

Ensuite, il faudra mettre en place FeedCord en créant un dossier FeedCord à l’emplacement souhaité, puis en créant un fichier de configuration appsettings.json à l’intérieur de ce dossier avec le contenu approprié. Vous trouverez toutes les informations nécessaires et des exemples de configuration dans la documentation du projet.

{
  "RssUrls": [
    "YOUR",
    "RSS URLS",
    "HERE"
  ],
  "YoutubeUrls": [
    "YOUR",
    "YOUTUBE CHANNEL URLS",
    "HERE",
    "eg. https://www.youtube.com/@IGN"
  ],
  "DiscordWebhookUrl": "https://discordapp.com/api/webhooks/1139357708546478200/ncB3dshJOPkQhthwOFQibeNt6YI-1_DiFbg0B3ZecfxchnbCGQNdG-m3PxqDdDSvt5Kk",
  "RssCheckIntervalMinutes": 3,
  "EnableAutoRemove": true,
  "Username": "FeedCord",
  "AvatarUrl": "https://i.imgur.com/1asmEAA.png",
  "AuthorIcon": "https://i.imgur.com/1asmEAA.png",
  "AuthorName": "FeedCord",
  "AuthorUrl": "https://github.com/Qolors/FeedCord",
  "FallbackImage": "https://i.imgur.com/f8M2Y5s.png",
  "FooterImage": "https://i.imgur.com/f8M2Y5s.png",
  "Color": 8411391,
  "DescriptionLimit": 200
}

Une fois ces étapes réalisées, il vous faudra déployer FeedCord avec Docker en créant un fichier docker-compose.yaml dans le dossier FeedCord et en y ajoutant le contenu adéquat.

version: "3.9"

services:
  myfeedcord:
    image: qolors/feedcord:latest # for amd64 architecture
    # image: qolors/feedcord:latest-arm64  # For arm64 architecture (Uncomment this line and comment the above if using arm64)
    container_name: FeedCord
    restart: unless-stopped
    volumes:
      - ./PATH/TO/MY/JSON/FILE/appsettings.json:/app/config/appsettings.json

Notez qu’il faudra remplacer les chemins vers votre fichier appsettings.json et adapter l’image Docker utilisée en fonction de l’architecture de votre système. Enfin, il vous suffira d’exécuter la commande

docker-compose up -d

dans votre terminal, depuis le répertoire FeedCord, pour récupérer l’image FeedCord la plus récente à partir de Docker Hub et lancer le service.

Et voilà, avec ces quelques étapes simples, FeedCord devrait maintenant être opérationnel et publier les mises à jour de vos flux RSS directement dans votre canal Discord. Pensez à rajouter le flux RSS de Korben.info pour ne manquer aucune de mes actus : https://korben.info/feed

Pour en savoir plus sur FeedCord, n’hésitez pas à vous rendre sur le dépôt GitHub à l’adresse suivante : https://github.com/Qolors/FeedCord.

Merci à Lorenper

Malware : une campagne malveillante cible les hôtes Docker, Redis, Confluence et Hadoop sous Linux

7 mars 2024 à 07:53

Spinning YARN, c'est le nom associé à une campagne de cyberattaques qui a pour objectif de compromettre les instances Cloud sous Linux dans le but de déployer des logiciels malveillants. Les solutions ciblées : Docker, Redis, Apache Hadoop et Atlassian Confluence. Faisons le point.

D'après les chercheurs en sécurité de Cado Security, un groupe de cybercriminels cible les serveurs Cloud, soit en tirant profit de mauvaises configurations, ou en exploitant une faille de sécurité présente dans une version vulnérable. Plus précisément, les pirates ciblent Docker, Redis, Apache Hadoop ainsi que la solution Atlassian Confluence en exploitant la faille de sécurité CVE-2022-26134.

Dans un article de blog, Chris Doman, cofondateur et directeur technique de Cado Security, précise : "Les attaques sont relativement codées en dur et automatisées, de sorte qu'elles recherchent des vulnérabilités connues dans Confluence et d'autres plateformes, ainsi que des erreurs de configuration bien connues dans des plateformes telles que Redis et Docker."

Si l'on prend l'exemple de Docker, les attaquants ciblent Docker Engine API par l'intermédiaire d'une requête Web, dans le but de parvenir à exécuter du code sur l'hôte sur lequel sont exécutés les containers. Cado Security donne pour un exemple un conteneur basé sur Alpine Linux, sur lequel les cybercriminels sont parvenus à créer un montage bind pour le répertoire racine (/) du serveur hôte, vers le point de montage /mnt à l'intérieur du conteneur.

Lorsqu'une instance est compromise, les cybercriminels déploient un outil de cryptominage, ainsi qu'un reverse shell nommé Platypus qui leur assure à un accès persistant sur l'instance. Ainsi, ils peuvent utiliser cet accès pour déployer d'autres malwares par la suite. Ceci n'est pas sans rappeler les actions menées par les groupes TeamTNT et WatchDog, d'après les chercheurs en sécurité.

Docker, une cible à la mode

Cado Security alerte sur le fait que les cybercriminels s'attaquent à Docker de plus en plus fréquemment pour obtenir un accès initial sur un serveur ou un environnement complet.

"Il est bien connu que les points d'extrémité de l'API de Docker Engine sont souvent ciblés pour un accès initial. Au cours du seul premier trimestre 2024, les chercheurs de Cado Security Labs ont identifié trois nouvelles campagnes de logiciels malveillants exploitant Docker pour l'accès initial, dont celle-ci.", peut-on lire dans le rapport.

Source

The post Malware : une campagne malveillante cible les hôtes Docker, Redis, Confluence et Hadoop sous Linux first appeared on IT-Connect.

Touitomamout – Pour synchroniser Twitter avec BlueSky et Mastodon

Par : Korben
5 mars 2024 à 09:00

Je ne sais pas si vous trainez sur Twitter, depuis qu’Elon en a pris la (mauvaise) direction, mais en ce qui me concerne, j’étais là avant lui, et je serai là après lui. Donc je reste sur Twitter malgré sa faune parfois un peu glauque.

Mais ça ne m’empêche pas d’être également présent sur Bluesky et Mastodon, même si je ne les utilise pas vraiment. J’essaye quand même d’y partager mes articles. D’ailleurs, pour Bluesky, je me suis fait une moulinette en python, qui me permet d’y automatiser le post de mes articles de blog avec l’aide de ChatGPT pour que ce soit encore plus naturel.

Mais si vous ne voulez pas trop vous prendre la tête, y’a Louis Grasset qui a mis en ligne Touitomamout (Jeu de mots ^^ : Tweet To Mammouth). Il s’agit d’un outil qui peut s’installer sur votre machine / serveur / docker et qui permet de faire du cross-post depuis Twitter vers Mastodon et / ou Bluesky. En plus des messages textes, des images, des vidéos ou encore des gifs animés, l’outil permet même si vous le désirez de synchroniser l’entièreté de votre profil (nom, avatar, bannière, description).

Pour le faire tourner dans Docker, c’est easy. Il vous suffit de créer un docker-compose.yml et de mettre ça dedans :

version: '3.9'

services:
  touitomamout:
    container_name: "touitomamout"
    image: louisgrasset/touitomamout:latest  # Or "ghcr.io/louisgrasset/touitomamout:latest"
    restart: unless-stopped
    environment:
      - ENV_FILE=/data/.env
      - STORAGE_DIR=/data
    volumes:
      - ./data:/data

Puis de lancer la commande suivante :

docker-compose up -d

Et voilà de beaux comptes de réseaux sociaux bien synchronisés. Bravo Louis !

Manage Docker with VS Code

8 février 2024 à 10:18
You can manage Docker images and containers directly within Visual Studio Code (VS Code) with Microsoft's Docker extension. This article walks you through adding Docker files to a Workspace, creating a containerized application environment, and explains how to build and run Docker containers directly from the VS Code interface.

Les failles Leaky Vessels dans runc permettent de s’évader des conteneurs Docker

5 février 2024 à 09:24

Un ensemble de vulnérabilités surnommé Leaky Vessels a été découvert dans l'outil CLI runc, utilisé notamment dans Docker et Kubernetes. En exploitant ces vulnérabilités, un attaquant peut s'échapper du container et accéder aux données de l'hôte physique. Faisons le point.

En novembre 2023, Rory McNamara, chercheur en sécurité chez Snyk, a fait la découverte de 4 failles de sécurité importantes présentes dans runc mais aussi dans Buildkit. Peut-être que ces noms ne vous disent rien, mais pourtant sachez qu'ils sont utilisés par des solutions populaires comme Docker et Kubernetes.

Par principe, un conteneur représente une application packagée qui contient les exécutables, toutes les dépendances nécessaires à son exécution, et tout le code nécessaire pour que l'application soit opérationnelle. Ceci crée un environnement isolé, vis-à-vis de l'hôte qui exécute le conteneur. Toutefois, si un pirate parvient à exploiter les failles de sécurité Leaky Vessels, il peut s'échapper du conteneur afin d'interagir avec l'hôte..

Voici les 4 failles de sécurité Leaky Vessels :

  • CVE-2024-21626
  • CVE-2024-23651
  • CVE-2024-23652
  • CVE-2024-23653

La vulnérabilité la plus critique, c'est bien la CVE-2024-21626 puisqu'elle permet, potentiellement, de compromettre l'hôte où sont exécutés les conteneurs. "L'exploitation de ce problème peut entraîner l'évasion du conteneur vers le système d'exploitation hôte sous-jacent, soit par l'exécution d'une image malveillante, soit par la construction d'une image à l'aide d'un fichier Docker malveillant ou d'une image en amont (c'est-à-dire lors de l'utilisation de FROM).", précise Snyk dans son rapport.

Quelles sont les versions affectées ? Comment se protéger ?

Même si pour le moment rien n'indique que ces failles de sécurité sont exploitées dans le cadre de cyberattaques, il est préférable d'installer les correctifs dès que possible. En effet, elles sont désormais divulguées publiquement et corrigées... Donc la situation pourrait évoluer.

Toutes les versions de runc sont affectées, et les développeurs ont mis en ligne runc 1.1.12 le 31 janvier 2024 afin de corriger ces vulnérabilités. En ce qui concerne Buildkit, les failles ont été corrigées avec la version 0.12.5.

A la même date, Docker a mis en ligne de nouvelles versions pour permettre de patcher ces vulnérabilités. Vous devez passer sur Docker 24.0.9 ou Docker 25.0.2. Pour Kubernetes, vous pouvez trouver des informations sur cette page. En complément, il y a d'autres bulletins de sécurité disponibles notamment du côté de chez AWS et Ubuntu.

Source

The post Les failles Leaky Vessels dans runc permettent de s’évader des conteneurs Docker first appeared on IT-Connect.

Installer Odoo (ERP/CRM) sur un NAS Synology en 5 minutes

Par : Fx
5 février 2024 à 07:00
J’avais besoin d’un système de facturation complet avec un gestionnaire de commandes et de clients. Après avoir essayé Invoice Ninja et InvoicePlane, qui ne m’ont pas satisfait à 100%, j’ai décidé de me tourner vers Odoo. A première vue, il peut apparaitre lourd ou trop complet pour un usage assez basique… pourtant, ce n’est pas le cas. Son fonctionnement par module le rend très flexible et relativement rapide. Aujourd’hui, nous allons voir ensemble comment installer la dernière version Odoo sur un NAS Synology avec Docker. Odoo et Synology Odoo (anciennement OpenERP) est une suite d’applications open-source écrites en Python et […]
Lire la suite : Installer Odoo (ERP/CRM) sur un NAS Synology en 5 minutes

Installer qBittorrent sur un NAS Synology

Par : Fx
24 janvier 2024 à 07:00
Aujourd’hui, nous vous présentons un guide pour installer facilement qBittorrent sur votre NAS Synology. Si vous lisez ces lignes, c’est certainement parce que vous recherchez une solution efficace pour gérer vos torrents. Grâce à la combinaison de qBittorrent et Docker, vous pourrez télécharger et partager vos fichiers depuis votre NAS Synology. Entrons dans le vif du sujet… qBittorrent et NAS Synology Avec Docker, il n’a jamais été aussi simple d’ajouter des fonctionnalités à son NAS. Dans ce tuto, nous allons voir ensemble comment installer qBittorrent avec Container Manager. Ce dernier permet de faire fonctionner des conteneurs Docker très facilement sur […]
Lire la suite : Installer qBittorrent sur un NAS Synology

Plane – Une bonne alternative à JIRA, Asana ou Linear pour mener vos projets à bien !

Par : Korben
18 janvier 2024 à 09:00

Vous êtes vous déjà demandé pourquoi tous vos projets partaient en couille ?

C’est probablement parce que vous n’avez pas encore trouvé le bon outil pour les planifier ! C’est pourquoi aujourd’hui, je tiens à vous présenter un projet open source à autohéberger qui s’appelle Plane !

Oui, comme l’avion. Bien qu’encore en développement, cet outil, est déjà suffisamment cool pour vous donner envie de l’utiliser afin de suivre vos tâches, vos sprints et autres feuilles de route.

L’interface est plutôt agréable et vous permettra d’afficher les projets, d’y ajouter des pièces jointes, de créer des workflows maison, mais également d’importer toutes les tâches directement depuis d’autres outils comme Github ou Jira. Et bien sûr recevoir des notifs dans Slack, Discord et vos propres outils puisqu’il y a même une API.

Vous pouvez également utiliser des cycles pour planifier des sprints, diviser les projets en modules et créer des filtres personnalisés pour trier les informations comme bon vous semble. Plane offre également la possibilité de faire de la documentation directement au fur et à mesure du développement de votre projet et tout s’intègre parfaitement à Github pour conserver à la fois votre code et vos issues synchronisées avec Plane.

Vous verrez, Plane est assez plaisant à prendre en main puisqu’il y a même Command K, un genre d’interface rapide à Spotlight pour chercher des tâches, créer de nouvelles actions….etc. sans oublier un petit bloc-notes propulsé à base de ChatGPT pour les grosses feignasses qui n’aiment pas écrire.

Si ça vous branche, il n’y a plus qu’à découvrir Plane et kiffer la vie de projets ! Pour apprendre à l’installer avec Docker, c’est par ici.

How to Install Proxmox on your Asustor NAS

Par : Rob Andrews
8 janvier 2024 à 18:00

How to Install Proxmox on an Asustor NAS Drive – Step By Step Guide

There is no denying that when it comes to ‘turn-key’ NAS solutions, that Asustor NAS are still easily the best bang for buck out there! Arriving with a hardware price point that is often 20% or more lower than comparable solutions from Synology or QNAP, they allow users who don’t want to build or don’t know/want to build their own server to have a ready-built solution that also includes the ADM NAS software platform. However, when it comes to virtualization and VM tools, they do not supply their own premium software (but do support others from within ADM) and for those looking to run a handful of VMs or Containers in their homelab setup, that can be a little bit of a barrier. If you have been looking into server-based virtualization or high-efficiency container deployment, then there is every chance that you are well aware of Promox, the open-source alternative to enterprise/premium VM platforms such as VMware, Citrix or Redhat hypervisors. A hypervisor is a layer of software that lives on top of bare metal server hardware and/or lives as an executional package from within an operating system. Although Asustor NAS systems already arrive with a very good virtual machine hypervisor, VirtualBox, many users would still like the option to run a VM Hypervisor software directly from the bare metal (eg, remove a multipurpose OS and have the system immediately boot into the Hypervisor software). VirtualBox has a huge range of software options (including downloading ready-made VM images from marketplaces, huge customization supported, integration with the backup/sync services in QuTS/ADM and in a new update High-Availability support). Still, some users might have an Asustor NAS that is outside of hardware warranty or is relatively modest that will possibly run VMs better without the host OS in place, hence why some users think about installing Proxmox in its place on their Asustor NAS. Proxmox provides pretty much all the abilities and services of those bigger premium VM hypervisors, however in those premium platforms (VMware, Citrix, HyperV, etc) there are additional charges and tiers to their use – whereas Proxmox includes them all in a free, open-source package. So, there are plenty of reasons why you might want to repurpose your old NAS with this bare metal hypervisor software, and today I want to guide you through the process of installing Proxmox on your Asustor NAS.

IMPORTANT – It’s important to note that Proxmox is NOWHERE NEAR as user-friendly as Asustor ADM with VirtualBox and before making any switch to a new NAS OS, it is important that you understand the process, risks and differences in the platforms. This guide is designed to help you use your Asustor NAS to run Proxmox as it’s primary OS. If you go ahead with this and use the same HDD/SSDs in the system that you are currently using in the Asustor ADM Setup, it will likely format them, so IF you want to reverse your Asustor NAS back to its ADM set up with all your data/drives the same, you will need to remove them before using the Proxmox setup, put them to one side safely and use new HDD/SSDs for your Proxmox installation. Lastly, although this whole process is reversible, you are technically using the Asustor in a means that the brand does not state as ‘intended use’ and this MIGHT lead to support/warranty problems down the line if a fault appears in the Asustor or the software installation that was the result of the Proxmox installation (the bios records everything!). This is HIGHLY UNLIKELY but not impossible that you could make the system inoperable (e.g. you work a Proxmox server so hard and/or push the CPU to breaking point running particularly aggressive Proxmox VMs/Containers and/or amend the BIOS to a state where you cannot access it) – this would not be covered by your Asustor NAS support, as they did not certify that the system can handle this or be used in this way under the warranty.

Proxmox Software on Asustor NAS Hardware – What You Need?

It is worth highlighting that having just an Asustor NAS is not quite enough and in order to get Proxmox up and running on an Asustor NAS requires a few extra checks and use of a few items you might have already in the home/office, or a quick $10-20 shop online at most. In order to upgrade your system to Proxmox, you will need to consider/have the following:

  • an Asustor NAS Drive with (minimum) an Intel 64bit x86 CPU and a minimum 4GB of Memory (recommended 8GB+)
  • Download the latest stable release of Proxmox here as a system image (you will be converting this to USB later on) – DOWNLOAD
  • Any Data that is currently on the Asustor NAS RAID that is mission critical to be backed up or moved (as it will be completely formatted)
  • A USB drive to use as the Proxmox installation drive ( I recommend THIS ONE here from Sandisk, as it is low price and incredibly small, even at 32GB)

 

  • I recommend not using a USB larger than 32GB, due to the constraints of 1st party software to format larger than this in FAT32 (though you can use the Rufus software to format larger than 32GB drives to FAT32). Don’t be tempted to spend like $2 more for a 64GB, as the Proxmox installation will occupy the full USB space (as you will create a system-image-USB) and space is utterly irrelevant when the Proxmox installation is so small
  • A Disk Image to USB conversion too. I recommend ‘Rufus’, currently in ver 3.19 and can be run in a portable .exe form that doesn’t require installation – DOWNLOAD
  • A basic USB Keyboard (example HERE but really, any will do) and an HDMI Monitor (or simply any device that has an HDMI input – NOT output) such as a TV or Capture card
  • Hard Drive and/or SSD media (you should already have these, but just in case) for your storage Pool / RAID

  • Optional M.2 NVMe SSD of at least 120GB, but highly recommended – Installing Proxmox is not unlike installing a Windows OS on a new PC, as you are connecting a USB to run the installer, but you need to target a drive in the Asustor NAS to install Proxmox onto. Whichever drive you use, it will make that drive largely inaccessible for anything but the Proxmox operating system. Therefore IF you are running an Asustor NAS that has internal m.2 NVMe SSD bays OR one with dedicated 2.5″ SSD bays, I highly recommend getting a low-capacity drive of between 60-120GB (these will be very cheap compared with larger HDDs that start in the Terabyte scales) and then use this for the Proxmox software. This means that ALL of the main SATA storage bays of the Asustor are then used for your storage pool(s) (aka the RAID). Do NOT install Proxmox on another USB drive during installation, as this is less stable.
  • OptionalDownload Advanced IP Scanner HERE, as it is a really useful tool for analyzing your network and finding your new Proxmox NAS for remote access

That is about it. Most of these are devices are that you will almost certainly already have to hand.

Can I Reverse the Proxmox Installation and go back to Asustor ADM?

Almost certainly YES! I say ‘almost certainly’, as there is one small caveat. When you make the change from Asustor ADM to Proxmox on the NAS hardware, the drives (HDD and/or SSD) inside used in Proxmox pools used in the new system software architecture. This works both ways if you want to revert back to ADM on the NAS too. You CANNOT use the Storage Pool, Volume structure, Folders etc of drives from an Asustor NAS in a Proxmox setup (you will need to format these in Proxmox). So, although the act of reinitializing the NAS to its original software is very easy (you just need to go into the BIOS of the Asustor using the same method in the guide below, then change the boot drive order BACK to the Asustor OS internal SSD), it will mean that any data that resides on the disks inside will be formatted. So, if you are choosing to make a change from one NAS OS to another, make sure you have your data appropriately backed up elsewhere OR move the drives that were in your Asustor (with their ADM Storage structure) to one side safely and install new 3.5″ storage media for the Proxmox pools etc. So, let’s begin the installation of Proxmox on the Asustor NAS.

Proxmox on an Asustor NAS – Step 1, Download Proxmox

Head to the Proxmox website HERE and download the latest stable release of the software to your local PC, Linux or Mac system. Make sure to remember where you downloaded it to.

Proxmox on an Asustor NAS – Step 2, Download Rufus USB Image Tool

Head to the Rufus website and download the latest version of that tool – I recommend downloading the standalone executable file here, as then it will immediately run when you double-click the file, without installation etc. It may redirect you to Github, but it will be the same executable file. Once again, remember where you downloaded it.

Proxmox on an Asustor NAS – Step 3, Preparing the USB

Connect the small form factor USB Drive to your system (again, this is the one I used from Sandisk) and after a few seconds, it should appear as an available USB Drive. The drive MAY need formatting (you will be prompted to do so), if that is the case, then you can format it via the system prompts and by default, it will format it to FAT32 (as long as your USB is less than 32GB). If you are not presented with a system prompt to format your USB, then you can head into My PC, or My Computer via a windows computer and right-click the drive, select ‘format’ and format it that way.

If you have used the USB for other things previously, there is a chance that the drive has existing partitions in place. For that, the quickest way to completely remove any partitions is to open up the bottom-left windows system menu as normal, and then just type diskpart and open the command-line GUI tool. From there, use the command list disk to show the available drives that are connected, you will see your USB (normally disk 1 or 2, but can differ depending on your system layout and can be spotted by the storage amount). From there, type select disk # (where # is the drive number that your USB is shown as) and then type clean, which will then remove any index structure for the drive (i.e the partitions and existing format) and then you can go back to the My Computer/My PC page and format the drive to FAT 32 as normal.

Proxmox on an Asustor NAS – Step 4, Creating a USB Installer Image of Proxmox

Open the Rufus application and from there you will see the USB Drive (listed as NO NAME, or ‘UNTITLED’, ETC) at the top. From there, look to the select image/find image option (depending on the ver. of Rufus or your USB Image Creator tool of choice) and find the Proxmox disk image you downloaded earlier). If the drive is not listed, it may have downloaded as a compressed/archive file. If that is the case, head to the location of where you downloaded Proxmox (in your file explorer, not in Rufus) and right-click the file you downloaded. If the option to ‘extract‘ is visible, then you can extract it (i.e unpack it to the original form) in that same download directory. From there, head back into RUFUS and then the Proxmox system image should be visible. Select it, then run the Rufus System image creator tool and create your USB bootable Proxmox disk image.

REMEMBER! This will completely format your USB drive and any files that are on that USB will be destroyed. The system image creator tool will turn the USB into a pure boot image tool – the USB will not be usable for traditional storage again unless you completely format it again.

Proxmox on an Asustor NAS – Step 5, REMOVE THE USB FROM YOUR PC!!!!!!!!!

Really, really important and sometimes overlooked. Once the USB creation is completed, you need to remove the USB (using the eject hardware safely option at the bottom right of your windows machine taskbar as normal). DO NOT accidentally leave the USB in your USB Ports for any longer than necessary. If you leave it in and your system reboots at any point (eg in a normal ‘end of day shut down, go home, reboot tomorrow’ scenario), then the system might boot directly into the Proxmox installation and although it is easy to exit from, it can change your system default boot preferences, maybe even remove your primary boot drive as the OS drive – requiring a little messing with a windows installation disk to change it back. The odds of this are very small, but not zero, so make sure to safely remove your USB drive when the Proxmox system image creator tool is completed.

Proxmox on an Asustor NAS – Step 6, (OPTIONAL) – Install an NVMe SSD

This is an optional step, but one I would certainly recommend for newer-generation Asustor NAS devices. Proxmox is a lot like a traditional computer operating system (eg Windows or macOS) in it’s architecture and will run at its best when the necessary boot files are located on a seperate, smaller and faster area of SSD/flash storage away from the general bulk storage. So, if possible/available in your Asustor NAS, I would recommend installing a smaller m.2 NVMe SSD drive and then using that as the target/location for your Proxmox installation. This is not compulsory and you can also use a single HDD or SSD in one of the main storage bays of your Asustor, however, it means that this drive will unusable for general storage (i.e in any RAID configuration or storage pool). This CAN be negated with some creative partiton creation, but I wouldn’t recommend it. Additionally, do NOT try to install Proxmox on another USB drive that is connected to the system – this isn’t particularly stable and tends to result in a poorer Proxmox experience. M.2 NVMe bays and their location in the Asustor NAS changes depending on the system. Some allow you to access these bays via the main HDD 3.5″ bays, whilst others (the majority) require you to remove the external chassis casing to access these bays (eg the TS-453E, TVS-872X, TS-873A, etc).

Reminder – Proxmox is NOT a big program and you can use an SSD as small as 32GB and still have a tonne of provision for future storage space. However, M.2 NVMe SSDs are not available in smaller sizes than 120GB. Lower size than this and you will generally only find 2240 SSDs and/or SATA M.2 SSDs. These are still perfectly fine to use, but the performance difference between SATA and NVMe (PCIe) is HUGE! You can find many SSD options here on amazon for as little as $30  – Find Low Capacitiy and Low Price M.2 NVMe SSDs HERE on Amazon (already filtered the results)

NOTE – If you plan on upgrading the memory of your NAS to 4GB-8GB-16GB or higher (in order to use ALL of the features of Proxmox to their fullest extent), I would recommend doing so at this point before rebuilding the physical chassis again, as many Asustor NAS have the 2nd SODIMM memory slot in really tight locations.

Proxmox on an Asustor NAS – Step 7, Connecting the USB, Keyboard and HDMI Monitor

Next, we need to connect the external means to install Proxmox on the Asustor NAS. Unlike when you set up your Asustor NAS for the first time, Proxmox cannot typically be installed via the network like ADM. Proxmox requires you to use a KVM (keyboard, Video Mouse – though you won’t need a mouse!) and go through the installation using a low-res graphical user interface. Now you will ONLY need this setup/items for the installation and initialization of your Proxmox server and after that, you will be able to use the server over the network/internet as normal. You are going to need a basic USB Keyboard (not a Bluetooth or wireless one, as these may need drivers to run and you cannot install drivers at this point) and an HDMI Monitor/TV. You CAN use a mouse, but it is not hugely necessary and 99% of the choices in the setup of Proxmox can/will be via keyboard input. Also, I would also recommend connecting the NAS to the network during setup as this will allow the system to assume certain network values during setup that will save a tonne of time later. Once that is all connected, do NOT turn the NAS on yet – there is one small and slightly time-sensitive thing to do.

Proxmox on an Asustor NAS – Step 8, Accessing the BIOS Menu of your Asustor NAS

Now that your Asustor NAS is all connected and you are ready at your keyboard/Monitor, turn the NAS on and wait till you hear a beep (should take between 5-15secs depending on the Asustor NAS). As soon as your hear that noise (and likely see a flashing character or underscore on the monitor screen), you need to continuously hit the ESC / F12 / F2 and/or DEL keys (not at the same time, just back and forth). One of these will result in the system displaying the blue BIOS menu (it changes between motherboards and Asustor uses a mixture of mobos in their Intel and AMD-powered systems). You need to be quick, as you only have about 3 seconds to do this before the Asustor will automatically boot from the small internal 4GB/5GB flash OS module that boots into Asustor.

Proxmox on an Asustor NAS – Step 9, Booting from the New Proxmox Installer USB

Next, you need to tap ‘RIGHT‘ on the keyboard and head to the ‘Save & Exit’ option. At the bottom, you should see, under the ‘boot override‘ option, your USB Drive. Tap ‘DOWN‘ until you are highlighting the USB and then tap ‘Enter‘ or ‘Return‘ on your keyboard, as this will push the Asustor to boot from that USB and begin the Proxmox installation. For now, we just need it to read from this USB this one time. If you already know the internal drive you plan on installing Proxmox onto (eg an M.2 NVMe SSD or a SATA SSD) that is already inside the system, make sure to change the boot priority of option #2 to THAT drive. As then, later on after the USB is removed, the system will automatically switch to the proxmox installed drive for the future.

Proxmox on an Asustor NAS – Step 10, Rebooting and Starting the Proxmox Installer

This next step is a bit of a quick one. Around 5-15 seconds after you selected the USB Drive in BIOS, the screen will display the Proxmox Installer option page and all you need to do is navigate the config choices to set up your Proxmox NAS the first time. Select ‘Install Proxmox VE‘.

Next, the Terms and Conditions will be displayed. Scroll through as appropriate, and either use the mouse or ‘tab’ key to make your way to ‘Agree’ and click enter.

Next enter your location, timezone and keyboard layout, then click ‘Next’.

Enter the password you wish to use for the ‘root’ account. This is the super-user (i.e All Access admin), which you can amend later on if you choose to. Additionally, add your email address for use in notifications, system alerts and abnormal behaviour reports. Then click ‘Next’.

Next, you need to configure your network connectivity. If your Asustor NAS has multiple ethernet ports, select which one you want to use as the Management Interface, for system software access. In the Hostname area, if you plan on only using this system on the local area network (you can change this later), just put ‘pve.lan’. The system will preselect an IP dynamically and arrange the DNS/Gateway, but again you can change all this later. You should DEFINITELY amend this si you are going to start giving Proxmox/VMs external access points. When you are satisfied with your setup, click next.

The system setuP will display a summary of the choices and configs you hav made and invite you to confirm and install the Proxmox software. Make sure to uncheck the box that suggests a reboot after the installation is complete. This is optional step and I only suggest it because it will allow you to remove the USB between the installation and first-time boot, ensuring the system doesn’t boot back into the USB installer afterwards, but recent versions of Proxmox actually take this into account and will go straight into the Proxmox boot disk – still, I would nevertheless factor in chance to remove the USB in the middle nonetheless. When you are ready, click ‘Install’ on the bottom right.

Installation of Proxmox will be quite quick, around 3-5 minutes. The system will let you know when the installation is done and, if you unchecked the box for auto reboot, you will be presented with your system’s local IP and port config.

You can now power down / reboot the system. Be sure to make a note of that IP that IP and Port number for when you want to access the Proxmox Asustor NAS server after it reboots – there is a small % chance that the IP might have dynamically changed (based your own network architecture), but there is another way to find the device on your network. Select Shutdown or Reboot as appropriate.

The system (via the HDMI interface) during the reboot cycle will give you a heads up when to remove the USB drive. Next time the system boots up, it should access the newly created Proxmox boot drive.

If the Promox boot drive boots fine, skip ahead to step 9. Otherwise, read below how to chance the boot drive arrangement again.


Proxmox on an Asustor NAS – Step 8, Remove the Boot USB Drive AND CHANGE BIOS!!!

Once your Asustor NAS has fully powered down, you need to disconnect the USB drive you installed earlier with Proxmox boot loader on it. You need to do this otherwise, when you reboot the Asustor NAS, it can potentially reboot into the bootloader again. You can skip past this and/or it will not action a reinitialization without your input, but better to remove the USB and therefore allow the system to always immediately boot into the Proxmox system you just created. Next, you need to head back into the BIOS from earlier. Keep the Keyboard and HDMI Monitor connected and use the same method you used earlier during the initial boot of the Asustor (pressing F12 /F2/ESC/Delete repeatedly when you hear the first Asustor beep after about 10-15 secs) and as soon as you are greeted with the familiar blue BIOS screen. From here, tap right a few times to highlight the ‘Boot’ option and change the option for Boot Priority #1. The default is Asustor OS, you need to change it to the drive you installed Proxmox on (whether that is a SATA/NVMe SSD or one of the main storage bays).

This will change the boot order to allow the system when it is first powered on to always boot into Proxmox. After this, you can click right again in the BIOS menu to select the option to Save and restart. The system will then boot into the Proxmox initialization (first-time setup).


Proxmox on an Asustor NAS – Step 9, Reboot the NAS

Upon rebooting the Asustor into Proxmox (can take up to 5 mins, but usually much quicker). You have two options with how to access the configuration and controls. You can use the HDMI+Keyboard if you choose for console/command level access.

Alternatively (much more recommended), use a program such as Advanced IP Scanner, which is free and VERY useful anyway, or even network command prompt) to scan your local area network and find where the Asustor with Proxmox is located (i.e it’s IP). This IP (eg 192.168.100.2) is what you put into the URL bar ofay web browser and it will load into the login GUI for Proxmox. From here you will need to use the username ‘root’ in combination with the password that you created during initialization.

And that is about it. You now have Proxmox installed as the default OS of your Asustor NAS. From here you can do anything and everything that his highly regarded virtualization server software offers.


EXTRA – How to Reverse Your Asustor NAS from Proxmox to Asustor ADM / ADM Software Again

Now, it is worth remembering that switching your Asustor NAS to run Proxmox instead of ADM is not a one-way street and you can reverse this relatively easily. Do remember first though that:

  • Any data on the HDD/SSDs inside the Asustor that were used in Proxmox server setup will not be accessible/usable with the Asustor NAS system and will likely be flashed/formatted during the Asustor ADM reinitialization
  • You will need your Keyboard and HDMI Monitor again in order to get back into BIOS
  • If you kept your original Asustor RAID Pool on HDDs etc to one side (i.e you removed the already configured storage media in their RAID from the Asustor when you changed to Proxmox and put these drives safely to one side), you should be able to migrate this data back into the Asustor NAS during re-initialization with ease. That said, YOU SHOULD ALWAYS HAVE A BACKUP FOR THIS DATA REGARDLESS

In order to reverse the Asustor NAS from Proxmox back to Asustor ADM Software, you need to (from a cold boot) access the BIOS menu again (so, at boot, with your Keyboard and monitor connected, press the DEL and/or F12 key over and over when the Asustor beeps, like before) and when you reach the BIOS menu, tap RIGHT until you reach the ‘Boot page. Then change the ‘Boot Option #1’ option from the Proxmox installation drive back to the Asustor OS (internal flash 5GB module). Once that is done, head into the ‘Save & Exit‘ and then select ‘Save Changes and Restart‘. Doing this will restart the Asustor NAS and it will automatically boot into the Asustor ADM boot sequence. From here your NAS will either automatically boot into the Asustor Setup page OR (if you have your original Asustor NAS RAID drives, with their Pools, Volumes, etc) it will just boot into the Asustor NAS software as normal.

Thanks for reading! I hope you found this helpful and that it really helped you to make the most of your storage. Want to help me continue to make more guides, reviews and tutorials on the subject of NAS? Then you can do so in a few different ways (any of which I will be eternally grateful for if you choose to!). You can visit the ‘Support NAS Passion’ page HERE and see a few different ways that you can help us keep the lights on. Alternatively, you can use one of the links below to shop for your hardware today or in future (visiting those sites via the link below ensures that we get a mall commission on absolutely anything you purchase – and doesn’t cost you anything extra). Finally, if you want to support us in spirit rather than financially, recommend our blog to a friend or professional colleague or share a link on your social media site of choice. Thank you for reading and have a fantastic week!


Where to Buy a Product
amzamexmaestrovisamaster 24Hfree delreturn VISIT RETAILER ➤ 
amzamexmaestrovisamaster 24Hfree delreturn VISIT RETAILER ➤

📧 SUBSCRIBE TO OUR NEWSLETTER 🔔
[contact-form-7]
🔒 Join Inner Circle

Get an alert every time something gets added to this specific article!


Want to follow specific category? 📧 Subscribe

This description contains links to Amazon. These links will take you to some of the products mentioned in today's content. As an Amazon Associate, I earn from qualifying purchases. Visit the NASCompares Deal Finder to find the best place to buy this device in your region, based on Service, Support and Reputation - Just Search for your NAS Drive in the Box Below

Need Advice on Data Storage from an Expert?

Finally, for free advice about your setup, just leave a message in the comments below here at NASCompares.com and we will get back to you. Need Help? Where possible (and where appropriate) please provide as much information about your requirements, as then I can arrange the best answer and solution to your needs. Do not worry about your e-mail address being required, it will NOT be used in a mailing list and will NOT be used in any way other than to respond to your enquiry. [contact-form-7] TRY CHAT Terms and Conditions
If you like this service, please consider supporting us. We use affiliate links on the blog allowing NAScompares information and advice service to be free of charge to you.Anything you purchase on the day you click on our links will generate a small commission which isused to run the website. Here is a link for Amazon and B&H.You can also get me a ☕ Ko-fi or old school Paypal. Thanks!To find out more about how to support this advice service check HEREIf you need to fix or configure a NAS, check Fiver Have you thought about helping others with your knowledge? Find Instructions Here  
 
Or support us by using our affiliate links on Amazon UK and Amazon US
    
 
Alternatively, why not ask me on the ASK NASCompares forum, by clicking the button below. This is a community hub that serves as a place that I can answer your question, chew the fat, share new release information and even get corrections posted. I will always get around to answering ALL queries, but as a one-man operation, I cannot promise speed! So by sharing your query in the ASK NASCompares section below, you can get a better range of solutions and suggestions, alongside my own.

☕ WE LOVE COFFEE ☕

 

New Powerful Terramaster F4-424 Pro, F4-424 and F2-424 NAS Revealed

Par : Rob Andrews
29 décembre 2023 à 18:00

Terramaster F4-424 Pro, F4-424 and F2-424 NAS for 2024

TerraMaster, arguably the value/affordable tier of the private NAS market, have revealed three new solutions that form the beginning of their 2024 series of devices – the Terramaster F4-424 Pro, F4-424 and F2-424 NAS. Arriving before their main competitors Synology, QNAP and Asustor, these new solutions are arriving with a more recent Intel N95 and N300 CPU series and will be available in 2-Bay and 4-Bay configurations.

Terramaster F4-424 Pro, F4-424 and F2-424 NAS – Hardware Specifications

At the core of the F2-424 and F4-424 models is the Intel Celeron N95 processor, a choice that balances power and efficiency. The F4-424 PRO, on the other hand, steps up the performance with the Intel Core i3 N300 processor, catering to more demanding tasks. Memory-wise, the F2-424 and F4-424 are equipped with 8 GB of DDR5 non-ECC SODIMM, while the F4-424 PRO doubles this capacity to 16 GB, enhancing its multitasking capabilities. Storage options vary across the models, with the F2-424 featuring two disk slots, suitable for personal or small office setups, and the F4-424 and F4-424 PRO offering four disk slots, providing more flexibility and capacity for intensive data storage needs.Here is a comparison table for the TerraMaster F2-424, F4-424, and F4-424 PRO NAS devices with the correct CPU specifications:

Feature/Specification TerraMaster F2-424 TerraMaster F4-424 TerraMaster F4-424 PRO
Processor Model Intel® Celeron N95 Intel® Celeron N95 Intel® Core™ i3 N300
Processor Architecture X.86 64-bit X.86 64-bit X.86 64-bit
Processor Frequency Max burst up to 3.4 GHz Max burst up to 3.4 GHz Max Turbo Frequency 3.80 GHz
Total Cores 4 4 8
Total Threads 4 4 8
System Memory 8 GB DDR5 non-ECC SODIMM 8 GB DDR5 non-ECC SODIMM 16 GB (Max, dependent on memory type)
Memory Slot Number 1 (DDR5 SODIMM) 1 (DDR5 SODIMM) 1
Maximum Supported Memory 32 GB DDR5 non-ECC SODIMM 32 GB DDR5 non-ECC SODIMM 16 GB
Disk Slot Number 2 4 4
Compatible Drive Types 3.5″ SATA HDD, 2.5″ SATA HDD/SSD 3.5″ SATA HDD, 2.5″ SATA HDD/SSD 3.5″ SATA HDD, 2.5″ SATA HDD/SSD
Maximum Internal Raw Storage Capacity 44 TB (22 TB x2) 88 TB (22 TB x4) 88 TB (22 TB x4)
Drive Hot Swap Yes Yes Yes
External Ports 2 RJ-45 2.5GbE, 2 USB3.1, HDMI 2 RJ-45 2.5GbE, 2 USB3.1, HDMI 2 RJ-45 2.5GbE, 2 USB3.1, HDMI
Dimensions (HWD) 222 x 119 x 154 mm 222 x 179 x 154 mm 222 x 179 x 154 mm
Weight 2.2 kg 3.4 kg 3.4 kg
System Fan 80 x 80 x 25 mm 80 x 80 x 25 mm 120 x 120 x 25 mm
Noise Level 19.0 dB(A) 19.0 dB(A) 21.0 dB(A)
Power Supply 40 W 40 W 90 W
Power Consumption 22.0 W (active), 11.0 W (hibernation) 22.0 W (active), 11.0 W (hibernation) 33.0 W (active), 13.0 W (hibernation)
Operating Temperature 0°C to 40°C 0°C to 40°C 0°C to 40°C
Supported OS Windows, Mac, Linux Windows, Mac, Linux Windows, Mac, Linux
Supported Browsers Chrome, Firefox, Safari, Edge Chrome, Firefox, Safari, Edge Chrome, Firefox, Safari, Edge
Supported Mobile OS iOS14.0+, Android 10.0+ iOS14.0+, Android 10.0+ iOS14.0+, Android 10.0+
Networking TCP/IP, IPv4/IPv6, Link Aggregation, DLNA, VPN, DDNS TCP/IP, IPv4/IPv6, Link Aggregation, DLNA, VPN, DDNS TCP/IP, IPv4/IPv6, Link Aggregation, DLNA, VPN, DDNS
Security Features Firewall, AES Encryption, RSA 2048 Firewall, AES Encryption, RSA 2048 Firewall, AES Encryption, RSA 2048
Price (Approximate) $379 $499 $699

This table provides a detailed comparison across key features and specifications for these TerraMaster NAS models. A common thread among these TerraMaster NAS units is their robust build and reliable performance. Each model supports both 3.5″ SATA HDDs and 2.5″ SATA SSDs, ensuring versatility in storage media choices. Networking is a strong suit, with all models featuring 2.5GbE network jacks for faster data transfer speeds, and HDMI ports for direct video output. Compatibility with various operating systems including Windows, Mac, and Linux, alongside comprehensive security features like firewall protection and AES encryption, underscores their flexibility and security focus.

When assessing these models for purchase, potential buyers should consider their specific needs. The number of disk slots is a critical factor, with the F2-424’s two slots being ideal for less demanding storage requirements, while the four slots in the F4-424 and F4-424 PRO are better suited for larger storage pools and more intensive applications. The F4-424 PRO, with its superior Intel Core i3 N300 processor and expanded memory, is particularly geared towards business environments that require higher processing power and greater multitasking abilities.

Terramaster F4-424 Pro, F4-424 and F2-424 NAS – CPU Differences

The choice of CPU significantly influences the performance of these NAS units. The Intel Celeron N95, powering the F2-424 and F4-424, is a quad-core processor with a maximum turbo frequency of 3.4 GHz and a 6 MB cache, capable of efficiently handling everyday storage tasks. It supports both DDR4 and DDR5 memory types, up to a speed of 4800 MHz, and can manage 4K graphics output at 60Hz, making it suitable for media-heavy applications. The Intel Core i3 N300 in the F4-424 PRO is an 8-core powerhouse, offering a higher turbo frequency of 3.8 GHz, which translates into faster processing and more efficient handling of data-intensive tasks. This processor also supports the same memory types and speeds as the N95 but stands out with enhanced graphics capabilities, owing to a greater number of execution units and a higher maximum dynamic frequency.

Specification Intel N95 CPU (F2-424 / F4-442) Intel N300 CPU (F4-424 PRO)
Product Collection Intel® Processor N-series Intel® Core™ i3 Processor N-series
Code Name Products formerly Alder Lake-N Products formerly Alder Lake-N
Vertical Segment Mobile Mobile
Processor Number N95 i3-N300
Lithography Intel 7 Intel 7
Total Cores 4 8
Total Threads 4 8
Max Turbo Frequency 3.40 GHz 3.80 GHz
Cache 6 MB 6 MB Intel® Smart Cache
TDP 15 W 7 W
Max Memory Size 16 GB (dependent on memory type) 16 GB (dependent on memory type)
Memory Types DDR4 3200 MT/s, DDR5 4800 MT/s, LPDDR5 4800 MT/s DDR4 3200 MT/s, DDR5 4800 MT/s, LPDDR5 4800 MT/s
Max Memory Channels 1 1
ECC Memory Supported No No
GPU Name Intel® UHD Graphics Intel® UHD Graphics
Max Dynamic Frequency 1.20 GHz 1.25 GHz
Graphics Output eDP 1.4b, DP 1.4, HDMI 2.1, MIPI-DSI 1.3 eDP 1.4b, DP 1.4, HDMI 2.1, MIPI-DSI 1.3
Execution Units 16 32
4K Support Yes, at 60Hz Yes, at 60Hz
Max Resolution (HDMI) 4096 x 2160@60Hz 4096 x 2160@60Hz
DirectX Support* 12.1 12.1
OpenGL Support* 4.6 4.6
OpenCL Support* 3.0 3.0
# of Displays Supported 3 3
PCI Express Lanes 9 Gen 3 9 Gen 3
USB Revision 2.0/3.2 2.0/3.2
TJUNCTION 105°C 105°C
Instruction Set 64-bit 64-bit
Advanced Technologies Includes Intel® Gaussian & Neural Accelerator 3.0, Intel® Image Processing Unit 6.0, Intel® Speed Shift Technology, Intel® Virtualization Technology, etc. Includes Intel® Gaussian & Neural Accelerator 3.0, Intel® Image Processing Unit 6.0, Intel® Speed Shift Technology, Intel® Virtualization Technology, etc.

Delving deeper into the usability aspects, all three models boast a user-friendly interface, making them accessible even to NAS novices. Their compatibility with various RAID configurations offers flexibility in data management and redundancy, crucial for data integrity and security. The inclusion of HDMI ports opens up possibilities for direct media playback, a feature that is particularly beneficial in home entertainment setups or digital signage applications. The TerraMaster NAS units also excel in connectivity options, with multiple USB and Ethernet ports providing the versatility needed in modern connected environments. This connectivity, coupled with their compact and sleek design, makes these NAS devices a fit for various settings, from home offices to more formal business environments.

Terramaster F4-424 Pro, F4-424 and F2-424 NAS – Should You Buy?

The TerraMaster’s F2-424, F4-424, and F4-424 PRO NAS units cater to a wide range of storage needs. The F2-424 and F4-424, with the Intel Celeron N95, are excellent choices for general home use and small offices, offering reliable performance for standard storage and media tasks. The F4-424 PRO, powered by the Intel Core i3 N300, is a step up, designed to meet the demands of business environments and power users who require enhanced processing power and expanded memory. This range from TerraMaster highlights a commitment to providing versatile, scalable storage solutions across different user needs and budget ranges, making them a noteworthy option in the NAS market.

📧 SUBSCRIBE TO OUR NEWSLETTER 🔔
[contact-form-7]
🔒 Join Inner Circle

Get an alert every time something gets added to this specific article!


Want to follow specific category? 📧 Subscribe

This description contains links to Amazon. These links will take you to some of the products mentioned in today's content. As an Amazon Associate, I earn from qualifying purchases. Visit the NASCompares Deal Finder to find the best place to buy this device in your region, based on Service, Support and Reputation - Just Search for your NAS Drive in the Box Below

Need Advice on Data Storage from an Expert?

Finally, for free advice about your setup, just leave a message in the comments below here at NASCompares.com and we will get back to you. Need Help? Where possible (and where appropriate) please provide as much information about your requirements, as then I can arrange the best answer and solution to your needs. Do not worry about your e-mail address being required, it will NOT be used in a mailing list and will NOT be used in any way other than to respond to your enquiry. [contact-form-7] TRY CHAT Terms and Conditions
If you like this service, please consider supporting us. We use affiliate links on the blog allowing NAScompares information and advice service to be free of charge to you.Anything you purchase on the day you click on our links will generate a small commission which isused to run the website. Here is a link for Amazon and B&H.You can also get me a ☕ Ko-fi or old school Paypal. Thanks!To find out more about how to support this advice service check HEREIf you need to fix or configure a NAS, check Fiver Have you thought about helping others with your knowledge? Find Instructions Here  
 
Or support us by using our affiliate links on Amazon UK and Amazon US
    
 
Alternatively, why not ask me on the ASK NASCompares forum, by clicking the button below. This is a community hub that serves as a place that I can answer your question, chew the fat, share new release information and even get corrections posted. I will always get around to answering ALL queries, but as a one-man operation, I cannot promise speed! So by sharing your query in the ASK NASCompares section below, you can get a better range of solutions and suggestions, alongside my own.

☕ WE LOVE COFFEE ☕

 

Analyser les vulnérabilités de vos conteneurs Docker avec Grype

Par : Korben
26 décembre 2023 à 09:00

On est en plein hiver et tous les petits vieux normalement constitués sont maintenant vaccinés contre la grippe. C’est cool, Raoult Raoul !

Mais avez-vous pensé à la santé de vos images Docker ? Et bien oui, parce qu’à force de télécharger tout un tas de conteneurs anciens et pas maintenus, vous avez sans le savoir des vulnérabilités dans vos conteneurs.

Mais alors, comment savoir ? Et bien grâce à Grype qui n’est pas un virus, mais un incroyable scanner de vulnérabilités qui peut analyser les images de conteneurs Docker, OCI et Singularity et les systèmes de fichiers.

Cet outil est ainsi capable de débusquer des vulns sur les systèmes d’exploitation containérisés tels que Alpine, Amazon Linux, BusyBox, CentOS, Debian, Ubuntu, mais également tout ce qui est vulnérabilités relatives à des langages de dev tels que Ruby, Java, JavaScript, Python, Dotnet, Golang, sans oublier PHP !

Pour l’installer, vous pouvez récupérer le binaire sur Github ou lancer la commande Curl suivante :

curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin

Si vous êtes sous Mac, en plus d’être un beau gosse, vous pouvez aussi l’installer avec Brew :

brew tap anchore/grype
brew install grype

Ensuite, pour le lancer, rien de plus simple, vous appelez la commande, suivi du nom de l’image Docker telle qu’on la trouve sur le hub.docker.com par exemple. Voici un exemple de scan avec cette image de l’éditeur Balena :

./grype balena/open-balena-vpn

Et pour ne voir que les vulnérabilité existantes pour lesquelles il existe un fix, vous pouvez également ajouter le paramètre suivant :

./grype balena/open-balena-vpn --only-fixed

Par défaut Grype scanne uniquement les vulnbérabilités visibles du conteneur, mais si vous voulez faire un truc plus en profondeur et scanner toutes les couches de ce même conteneur, ajoutez le paramètre suivant :

./grype balena/open-balena-vpn --scope all-layers

Au niveau des exports, vous pouvez sortir tout ça sous la forme d’un tableau dans le terminal, ou d’un rapport JSON ou XML pour ensuite l’interroger avec des outils comme jq.

L’utilisation de Grype vous permet également un niveau élevé de personnalisation. Vous pouvez ainsi définir la portée de la recherche avec des expressions permettant d’inclure ou exclure certains fichiers ou répertoires.

Un autre atout majeur de Grype est sa capacité à intégrer des sources de données externes pour une meilleure correspondance des vulnérabilités. Ainsi, il peut analyser les données provenant de bases telles que Alpine Linux SecDB ou Debian Linux CVE Tracker pour vous fournir des informations encore plus précises sur les failles potentielles que votre image pourrait présenter.

En parlant d’intégration, si vous travaillez avec GitHub et utilisez les Actions GitHub, Grype s’intègre parfaitement pour exécuter des analyses de vulnérabilités lors de vos workflows CI, assurant ainsi la sécurité de votre code et de vos conteneurs à chaque étape du processus.

Bref, dans l’ensemble, Grype est un outil essentiel pour tous ceux qui souhaitent garantir la sécurité et l’intégrité de leurs images Docker et pas que. Que ce soit pour identifier les vulnérabilités ou tirer parti des fonctionnalités avancées telles que les sources externes et l’intégration des actions GitHub, Grype est un allié de taille dans la lutte continuelle contre les failles potentielles qui peuvent compromettre votre infrastructure.

À découvrir ici

Installer homepage sur son NAS Synology ou QNAP

Par : Fx
15 décembre 2023 à 07:00
homepagehomepage est une page d’accueil personnalisable avec des intégrations Docker et la prise en charge de services API. C’est une sorte de tableau de bord d’application moderne, avec de nombreuses fonctionnalités avancées (plus de 100 services disponibles). Dans cet article, nous allons découvrir comment installer facilement cette solution sur votre NAS Synology, ainsi que sur un NAS QNAP.  Préparez-vous à transformer votre expérience NAS avec homepage ! Homepage & NAS Synology Vous connaissez peut-être déjà Heimdall, Homarr, Dashy ou encore Flame. Aujourd’hui, nous vous proposons une autre alternative : homepage. L’auteur décrit son produit de la façon suivante : « Un […]
Lire la suite : Installer homepage sur son NAS Synology ou QNAP

NAS Synology : comment mettre à jour un conteneur Docker ?

Par : Fx
1 décembre 2023 à 07:00
Synology Container ManagerAvec le lancement de Synology DSM 7.2, des modifications importantes ont été apportées à l’interface de gestion Docker. L’application Docker a été rebaptisée Container Manager, avec de nouvelles fonctionnalités. Avec à cette nouvelle application, le déploiement et la gestion des conteneurs est beaucoup plus simple. Aujourd’hui, nous allons aborder la mise à jour simplifié de conteneur. Container Manager et la mise à jour des conteneurs Si je ne devais retenir que 2 choses du passage de Docker à Container Manager chez Synology… Ce serait sans hésitation la création des projets avec (ou sans) fichier yml et l’intégration parfaite depuis l’interface […]
Lire la suite : NAS Synology : comment mettre à jour un conteneur Docker ?

Update container images with Copa

27 novembre 2023 à 13:17

Copa, an open-source container image security tool from Microsoft, addresses the need to update container images. It lets you immediately patch container image vulnerabilities without relying on developers or maintainers.

The post Update container images with Copa first appeared on 4sysops.

Nested Docker containers: Run Docker in a Docker container

10 novembre 2023 à 10:51

Working with nested Docker containers has several use cases. In this article, I will discuss three methods to create a container inside a Docker container: Docker socket (Dood), dind tag, and Sysbox. You will learn about the advantages and disadvantages of each solution, and I will outline the downsides of nested containers.

The post Nested Docker containers: Run Docker in a Docker container first appeared on 4sysops.
❌
❌