Are there any hidden security vulnerabilities in a NAS environment? Could you outline the most common and well-known security issues that the NAS administrator should know?
For NAS security some of issues are similar to SAN security, and some are unique. NAS consists of an IP network with clients using different protocols over Ethernet to access NAS storage. Vulnerabilities such as sniffer attack to copy data are considered common attacks on IP networks. Also, most IP systems come with several services that, if not required, should be removed to reduce security exposures (often called "hardening").
Finally, management or administrator access to NAS resources must be protected through strong authentication and confidentiality, something that is a common and higher priority risk to SAN and NAS.
Editor's note: Do you agree with this expert's response? If you have more to share, post it in one of our .bphAaR2qhqA^0@/searchstorage>discussion forums.
This was first published in April 2003