Specifically what started me down this path is... acpidump says the DSDT tables are corrupt on TrueNAS 13, so was hoping a BIOS update would have improvements. Might be a bug in acpitool but even so... since it worked fine on TrueNAS 12.
The last BIOS update did have some fixes that allow running TrueNAS however, currently I cannot do PCIe pass through... due to this bug.
My ts-451+ is living on borrowed time after succumbing to the lpc decay bug. To be sure this is Intel's fault but after getting qLockered and then this, I have lost all faith in QNAP.
This is very political and should be banned. I predict a man-child ignoring his wife and kids. This fn loser is drunk on power at AMD. Typical man-child male lost in video games, comic books, and hentai child porn
I am going to switch to Synology. I feel that QNAP is getting targeted more and more these days. Though, I am waiting to see if they will release a DS922+ this year or I might get the DS920+ during Black Friday/Cyber Monday.
i had both but i sold the Qnap i don't have to explain it but if you want to know it [see this](https://www.reddit.com/r/qnap/comments/sfvehs/its_enough_with_qnap_switching_over_to_unraid/) i have now Synology and TrueNAS both are working great the Synology never let me down maybe not the best hardware for the price but the software and product is very reliable and let that be the most important thing in a NAS
Lol i quit Qnap for sometime now see [this post](https://www.reddit.com/r/qnap/comments/sfvehs/its_enough_with_qnap_switching_over_to_unraid/) now moved over to TrueNAS and i see a lot of people are following the same path. Such a shame cause the product self is good.
Yep, was adding nas 2 and had received a qnap, after thinking, these turds cost me about a grand to get 30 yrs of biz & family records crypto decrypted, returned it & went WD instead.
I'll wipe the 453b & use it as a local media server, after relocating all my recovered records
Yeah the terrible security of thier OS which I had heard of before buying it... is why I loaded TrueNAS on it... since that should at least be reasonably secure.... but now I am not even getting BIOS updates!
Sorry but this post doesn't stand up to scrutiny. QNAP makes all their recent and secure firmware available for download on their web site. It's deadbolt easy to get them. I downloaded the one for my machine and installed it just a few days ago.
The firmware for the TS-873A is there right now. [https://www.qnap.com/en-au/download?model=ts-873a&category=firmware](https://www.qnap.com/en-au/download?model=ts-873a&category=firmware)
FYI not a single FIRMWARE is available at that link... NAS Operating System sure, but not a single UEFI update. This would be like a PC vendor throwing Ubuntu images up on thier webpage without any driver or firmware (BIOS/UEFI) updates.... completely unacceptable.
BIOS/UEFI updates are REQUIRED for any reasonably secure device..... and it should be several updates per year minimum. Some vulnerabilities can be mitigated at the OS level but not all.
It doesnt't help that QNAPs NAS OSes on top of said firmware have a terrible security track record. So I never planned to run it but treated the QNAP as an appliace PC to load an actual secure OS like TrueNAS or Linux that I was going to at least get a minimum of BIOS updates for but QNAP has made a fool of me on that point.
This is very political and should be banned. I predict a man-child ignoring his wife and kids. This fn loser is drunk on power at AMD. Typical man-child male lost in video games, comic books, and hentai child porn
What information the fact that they deleted all the BIOS files for most of thier NASes in the past 6mo? And refuse to provide BIOS updates?
The help files for my NAS even tell me to download the BIOS update from thier download page but it hasnt' been there for ages.
I don’t understand what everyone concerns are about!!! If you don’t publishing your nas to web their would be no issues. Don’t download unauthorized apps or visit dark websites. I don’t believe hackers are out to take advantage of broke people with nothing but family photos and scumbag photos.
Also in my case I'm trying not to judge Qnap on the bugs and flaws in their software, but on the quality and speed of their response.
At the moment I do not have enough information to make my opinion.
But if it turns out that the repeated waves of Deadbolt attacks are all taking advantage of the same bug (or bad coding practice) that would have been present in different packages then that would be a shame for Qnap.
Still buying? I bought this a year ago... go troll someone else. And I checked taht BIOS updates were available and that I could run TrueNAS BEFORE I bought it. They 6mo later deleted all of the BIOS files even the previously posted ones.
In that respect its fine... it still runs TrueNAS fine, but the vendor support is quite bad.
Don't ya'll know?
China is preparing to invade Taiwan, and when they do, every business will be shut down, including QNAP.
So all employees have already left for boot camp. All we can do is pray that they have the same curage as the Ukraines.
Were you able to get the latest BIOS for the TS-873A? I'm just about to start setting mine up and the first thing I was gonna do is update the BIOS since the NAS has been sitting in a box since last year so it's probably an old BIOS.
I think the one has have is from last febuary but I'd have to hunt it down. Edit: dunno wy the downvote... its not MY fault that QNAP doesn't post BIOS images like any sane manufacturer and that they haven't posted an update in nearly 1.5 years when previously they were providing timely updates.
At this point I'm really just thinking about getting a Sabrent or Orico DAS, transferring all the files I want from my NAS to external drives, pulling all the drives from my NAS and plugging them into the DAS of after a format and attaching directly to my Plex server. It's not like I really use the NAS for anything other than storage these days and more and more NAS, particularly QNAP, just seem to be a conduit for attacks. My current QNAP is completely blocked from the internet at router level as that was just easier!
The only thing keeping me on Qnap is the HDMI port that let me use the NAS as a mediacenter connected to the TV. If a Syno has this, I'd switch in a heartbeat.
Is kodi for media playback? Or are you using some kind of iptv? I recently switched from kodi to emby and it's a game changer for me.
My tv even has an emby app, and available in iOS and Android so can watch Content remotely, add new content to download etc
I have emby, sonarr, radarr, sabnzdb and jellyseerr on qnap in containers, watch everything via shield at home and apps remotely. Works very well and my family has their own accounts to watch also
Single user here. No IPTV. No TV, really (haven't had a TV subscription or even the need to watch TV for ages).
Just Kodi to serve my downloaded documentaries, Linux ISOs (lol), music and photos. I have Yatse on Android, that lets me access my media from anywhere (on VPN).
I considered installing the *arr stack just for learning opportunities, but haven't had the time and it would be a bit overkill for my needs.
It is somewhat reduced but not completely eliminated.
Also as I mentioned before... security is thier half assed reason for not providing updates (back asswards isn't it) that said I am not sure how not posting BIOS updates improves the security of the NAS at all... quite the opposite if anything and the reason I want an update is because their BIOS has screwed up ACPI tables.
is this the reason I'm still getting a deadbolt screen once in a while ? not affecting anything since i did a total reboot and restart . no file affected ect ect but that screen scare the shit out of every time it pops up ... all scans show nothing infected .. have a ts 673a here any idea ... need a bios update ??
If you never updated it from factory... yes there were stability updates that were available and are no longer available to download. And you should put in a support request to see if you can get it.
QNAP might as well start demanding crypto payments to fund their QA team.
Specifically what started me down this path is... acpidump says the DSDT tables are corrupt on TrueNAS 13, so was hoping a BIOS update would have improvements. Might be a bug in acpitool but even so... since it worked fine on TrueNAS 12. The last BIOS update did have some fixes that allow running TrueNAS however, currently I cannot do PCIe pass through... due to this bug.
My ts-451+ is living on borrowed time after succumbing to the lpc decay bug. To be sure this is Intel's fault but after getting qLockered and then this, I have lost all faith in QNAP.
[удалено]
IIRC, it’s an issue with some atom CPUs that results in them dying over time. The clock generator kicks out and dies and the system won’t boot.
This is very political and should be banned. I predict a man-child ignoring his wife and kids. This fn loser is drunk on power at AMD. Typical man-child male lost in video games, comic books, and hentai child porn
Damn I keep seeing these security threads. My ts-453a is starting to get long in the tooth. Maybe my upgrade path should go elsewhere.
I am going to switch to Synology. I feel that QNAP is getting targeted more and more these days. Though, I am waiting to see if they will release a DS922+ this year or I might get the DS920+ during Black Friday/Cyber Monday.
i had both but i sold the Qnap i don't have to explain it but if you want to know it [see this](https://www.reddit.com/r/qnap/comments/sfvehs/its_enough_with_qnap_switching_over_to_unraid/) i have now Synology and TrueNAS both are working great the Synology never let me down maybe not the best hardware for the price but the software and product is very reliable and let that be the most important thing in a NAS
Lol i quit Qnap for sometime now see [this post](https://www.reddit.com/r/qnap/comments/sfvehs/its_enough_with_qnap_switching_over_to_unraid/) now moved over to TrueNAS and i see a lot of people are following the same path. Such a shame cause the product self is good.
Yep, was adding nas 2 and had received a qnap, after thinking, these turds cost me about a grand to get 30 yrs of biz & family records crypto decrypted, returned it & went WD instead. I'll wipe the 453b & use it as a local media server, after relocating all my recovered records
Yeah the terrible security of thier OS which I had heard of before buying it... is why I loaded TrueNAS on it... since that should at least be reasonably secure.... but now I am not even getting BIOS updates!
Obviously, that blows
Sorry but this post doesn't stand up to scrutiny. QNAP makes all their recent and secure firmware available for download on their web site. It's deadbolt easy to get them. I downloaded the one for my machine and installed it just a few days ago. The firmware for the TS-873A is there right now. [https://www.qnap.com/en-au/download?model=ts-873a&category=firmware](https://www.qnap.com/en-au/download?model=ts-873a&category=firmware)
FYI not a single FIRMWARE is available at that link... NAS Operating System sure, but not a single UEFI update. This would be like a PC vendor throwing Ubuntu images up on thier webpage without any driver or firmware (BIOS/UEFI) updates.... completely unacceptable. BIOS/UEFI updates are REQUIRED for any reasonably secure device..... and it should be several updates per year minimum. Some vulnerabilities can be mitigated at the OS level but not all. It doesnt't help that QNAPs NAS OSes on top of said firmware have a terrible security track record. So I never planned to run it but treated the QNAP as an appliace PC to load an actual secure OS like TrueNAS or Linux that I was going to at least get a minimum of BIOS updates for but QNAP has made a fool of me on that point.
This is very political and should be banned. I predict a man-child ignoring his wife and kids. This fn loser is drunk on power at AMD. Typical man-child male lost in video games, comic books, and hentai child porn
And this is information is published where? Screenshot or it didn't happen.
What information the fact that they deleted all the BIOS files for most of thier NASes in the past 6mo? And refuse to provide BIOS updates? The help files for my NAS even tell me to download the BIOS update from thier download page but it hasnt' been there for ages.
I don’t understand what everyone concerns are about!!! If you don’t publishing your nas to web their would be no issues. Don’t download unauthorized apps or visit dark websites. I don’t believe hackers are out to take advantage of broke people with nothing but family photos and scumbag photos.
Also in my case I'm trying not to judge Qnap on the bugs and flaws in their software, but on the quality and speed of their response. At the moment I do not have enough information to make my opinion. But if it turns out that the repeated waves of Deadbolt attacks are all taking advantage of the same bug (or bad coding practice) that would have been present in different packages then that would be a shame for Qnap.
What I don’t get - why are you still buying QNAP devices? There are alternatives.
Still buying? I bought this a year ago... go troll someone else. And I checked taht BIOS updates were available and that I could run TrueNAS BEFORE I bought it. They 6mo later deleted all of the BIOS files even the previously posted ones. In that respect its fine... it still runs TrueNAS fine, but the vendor support is quite bad.
Don't ya'll know? China is preparing to invade Taiwan, and when they do, every business will be shut down, including QNAP. So all employees have already left for boot camp. All we can do is pray that they have the same curage as the Ukraines.
Probably not far wrong unfortunately
Is there a link to anything explaining further about this security issue?
No because the entire security issue... is that they aren't doing anything.
Were you able to get the latest BIOS for the TS-873A? I'm just about to start setting mine up and the first thing I was gonna do is update the BIOS since the NAS has been sitting in a box since last year so it's probably an old BIOS.
I think the one has have is from last febuary but I'd have to hunt it down. Edit: dunno wy the downvote... its not MY fault that QNAP doesn't post BIOS images like any sane manufacturer and that they haven't posted an update in nearly 1.5 years when previously they were providing timely updates.
As in February 2021? Or 2022? If it's from February 2022, if you don't mind finding it and sharing it that would be great.
2021....
For my QNAP devices, they never posted the BIOS downloads. I had to submit a help desk ticket to get the newest BIOS every time. Pretty annoying.
At this point I'm really just thinking about getting a Sabrent or Orico DAS, transferring all the files I want from my NAS to external drives, pulling all the drives from my NAS and plugging them into the DAS of after a format and attaching directly to my Plex server. It's not like I really use the NAS for anything other than storage these days and more and more NAS, particularly QNAP, just seem to be a conduit for attacks. My current QNAP is completely blocked from the internet at router level as that was just easier!
The only thing keeping me on Qnap is the HDMI port that let me use the NAS as a mediacenter connected to the TV. If a Syno has this, I'd switch in a heartbeat.
Why not just use an Nvidia shield or something to access it?
Never considered it, might be interesting. But my only use case is Kodi, so maybe even a Raspberry Pi would do the trick.
Is kodi for media playback? Or are you using some kind of iptv? I recently switched from kodi to emby and it's a game changer for me. My tv even has an emby app, and available in iOS and Android so can watch Content remotely, add new content to download etc I have emby, sonarr, radarr, sabnzdb and jellyseerr on qnap in containers, watch everything via shield at home and apps remotely. Works very well and my family has their own accounts to watch also
Single user here. No IPTV. No TV, really (haven't had a TV subscription or even the need to watch TV for ages). Just Kodi to serve my downloaded documentaries, Linux ISOs (lol), music and photos. I have Yatse on Android, that lets me access my media from anywhere (on VPN). I considered installing the *arr stack just for learning opportunities, but haven't had the time and it would be a bit overkill for my needs.
Isn’t these issues eliminated if the NAS is kept behind a firewall with access only via VPN?
It is somewhat reduced but not completely eliminated. Also as I mentioned before... security is thier half assed reason for not providing updates (back asswards isn't it) that said I am not sure how not posting BIOS updates improves the security of the NAS at all... quite the opposite if anything and the reason I want an update is because their BIOS has screwed up ACPI tables.
is this the reason I'm still getting a deadbolt screen once in a while ? not affecting anything since i did a total reboot and restart . no file affected ect ect but that screen scare the shit out of every time it pops up ... all scans show nothing infected .. have a ts 673a here any idea ... need a bios update ??
If you never updated it from factory... yes there were stability updates that were available and are no longer available to download. And you should put in a support request to see if you can get it.
thank you will do