Page 1 of 1

Netatalk and using app - is it secure?

Posted: Fri Jan 29, 2016 11:18 pm
by alechk
I'm transferring jpg files from the RPi to my Mac OS X machine , installing netatalk on the RPi and using open afp <IP address of my RPi> to display and access my RPi file manager. It seems too good to be true - so I am suspecting it isn't. Am I compromising the security of my Mac?

Re: Netatalk and using app - is it secure?

Posted: Sat Jan 30, 2016 12:03 am
by rzusman
I don't see how this could be a security risk.
You are simply accessing a server - if you don't have file sharing turned on in OS X, there's no additional security risk (to the Mac - the Pi could be at risk if you have weak passwords).

BTW, I use this to get data onto my Pi's all the time.

Re: Netatalk and using app - is it secure?

Posted: Sat Jan 30, 2016 4:11 pm
by alechk
Thanks for your quick response. I feel more reassured after reading your post, although I still feel a bit uneasy due to comments I read online by some Microsoft network managers who seemed to be saying they would steer clear of netatalk/afp - but then I suppose they are dealing with a different environment from the one I am working in on my home wireless network. Also I had the - possibly mistaken - impression that something like SSH/SFTP were different from the Apple File Protocol and possibly more secure. I'm pretty hazy on all this as I've only started reading about it, so apologies for any misconceptions on my part.

From your post it sounds as though you are equally happy with traffic going either way between RPis and Mac. Is that correct?

I had taken the precaution of changing my RPi password and I do indeed seem to have File Sharing disabled, so hopefully things will be ok.

Re: Netatalk and using app - is it secure?

Posted: Sat Jan 30, 2016 4:27 pm
by rzusman
Yes, the protocol seems to work quite well in both directions..

I suppose there might be some theoretical security risk for a "Man-in-the-Middle: attack, but this is really only a worry if the data you are transferring is valuable, which seems unlikely in a "raspberry pi" scenario.

Re: Netatalk and using app - is it secure?

Posted: Sat Jan 30, 2016 4:42 pm
by alechk
I shall stop worrying!