01-18-2023, 04:43 PM
(01-18-2023, 04:08 PM)TheOldPresbyope Wrote:(01-18-2023, 01:05 PM)Tim Curtis Wrote:(01-18-2023, 08:38 AM)the_bertrum Wrote:(01-18-2023, 08:19 AM)Phil35 Wrote: So this is simpler and more secure.
But also less ubiquitous and isn't "ready to go" on as many devices. I think it would be a mistake to add this at the expense pf the more widely known and popular options, even if it is inherently better. It would be akin to dropping MP3 because AAC is better.
(01-18-2023, 10:06 AM)Phil35 Wrote: Hi,
Adding an option do not mean removing the current ones.
Adding an option gives another way to access to storage
It is more choice for all
Phil
Both points are valid.
The issue for me is that since each option in moOde creates a vector for support any new option that is added has to be considered in that context and for reference mounting remote storage is one of the top issues as far as support goes.
Also adding a new mount protocol involves adding it to the File Sharing options and the Mount Monitor which means learning how to detect SSHFS failure modes. All said not a trivial amount of work.
There's almost 50 optional parameters to sshfs, many of which I believe can be ignored without causing anyone any heartburn (but we LInux-heads do love our options)
Certainly, it works for me to mount a remote directory from one of my Linux boxes in moOde's /mnt/NAS tree using sshfs with minimal options to allow others to access the directory besides its owner.
A big concern to me, though, is the very security aspect which was emphasized by the OP. Since this is ssh, I have to either store the username and password for the account owning the remote directory or deal with a key file. Besides the UI and bookkeeping for this, it gives a user on a moOde player the ability to log into the remote system. Once one starts working through best-practice settings for the remote system and the local sshfs options, the simplicity evaporates. At least that's the way I see it.
Just my 2-cents worth. If this feature gets implemented, I'll test it.
Regards,
Kent
Regarding security, let's not forget that moOde is not a secure system and so some basic, common sense practices should always be followed.
1. It should only be used on a trusted network.
2. It should never be connected directly to the Internet :-0
3. The SSH logon password should be changed from the default
With that said I should also mention that Samba (SMB) userid and password if specified are stored in plaintext and NFS doesn't support userid/password security but instead grants access by host or entire subnet.
You are correct about SSHFS security only being valid if keyfile or some other method for securely storing passwords can be implemented. Another option would be to prompt for password to initiate the mount but that goes in the opposite direction of user-friendliness.
