Welcome to the MacNN Forums.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

You are here: MacNN Forums > Enthusiast Zone > Networking > Problem with File Sharing-Security, Sharing all Folders

Problem with File Sharing-Security, Sharing all Folders
Thread Tools
markw10
Mac Enthusiast
Join Date: Aug 2006
Status: Offline
Reply With Quote
Feb 3, 2008, 04:31 AM
 
I recently purchased a Mac Pro and am sharing the 2nd internal hard drive since I am using that as a Server Drive and want to be able to access it both internally while at Home and also Externally using Back to my Mac. I also have this computer set up for screen sharing since I want to be able to use it remotely.
Here is the issues.
1. I have turned logged into it from my MBP while at Home and if I'm logged in as Guest I only see the Server Drive which is good. My concern is that if I log in with my login I then sell all Folders including the Main 'Macintosh HD' At least as a guest I can only see the Server Drive but is it any way I can stop it from showing all the other folders on the computer since I have no reason to do that?

2. Also, I would like to disable all access for Guest. Yet I have it list Everyone or Guest in the file sharing and I have no way of deleting this. I don't want a Guest to be able to connect to this computer or share any files at all on it. Is there any way to disable this?

3. Security: How secure is this? I am using it on a Home Wi-Fi network with an Airport Base Station 1GB. I have the Leopard filewall set to "Set Access for Specific Services" since it won't work with "Allow only essential services" I hope my home network is more security but with Back to my Mac how hard would it be for someone to be able to find this computer on the network? I don't do any filesharing on my MBP but do have it set up for File Sharing but only with my login ID.
     
besson3c
Clinically Insane
Join Date: Mar 2001
Location: yes
Status: Offline
Reply With Quote
Feb 3, 2008, 10:42 AM
 
When you log in to your machine via AFP or any other service you inherit the permissions of the user you log in as. I think that is the problem you are running into.

As far as security goes, under AFP your password is hashed, and there is an option to encrypt traffic (at least there was under Tiger) but otherwise all other data being transferred is unencrypted. If you want encryption, your best bet is to either look into SSH tunneling, or using SSHfs/FUSE to connect to your machine remotely (the latter is what I do, performance is also better this way).

I hope this helps!
     
besson3c
Clinically Insane
Join Date: Mar 2001
Location: yes
Status: Offline
Reply With Quote
Feb 3, 2008, 10:44 AM
 
As far as Back to my Mac goes, all is is dyndns plus Kerberos authentication so that you don't have to send your account information to your Mac for authentication. This is secure as long as .Mac itself is secured, but otherwise you can replace this nicely with dyndns and SSHfs.
     
   
Thread Tools
Forum Links
Forum Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Top
Privacy Policy
All times are GMT -5. The time now is 05:21 PM.
All contents of these forums © 1995-2011 MacNN. All rights reserved.
Branding + Design: www.gesamtbild.com
vBulletin v.3.8.7 © 2000-2011, Jelsoft Enterprises Ltd., Content Relevant URLs by vBSEO 3.3.2