Jump to content
HexOS 1.0 ×
Guide for users having trouble updating Immich ×
  • 1

Am I being overly cautious here?

ColHomer

Asked by ColHomer,

 Share

Question

ColHomer Rookie

ColHomer

Posted
Posted

I recently started testing Apps within HexOS and installed a couple of curated apps where I noticed the process creates several public accessible storage shares as part of the install process. During my testing I switch to installing one of the apps through the TrueNAS interface instead and didn't see this behavior. Am I being overly cautious thinking that this is a pretty big security risk for when I move HexOS to being my production NAS? Should I be installing all apps through the TrueNAS interface if this continues to be a big concern for me? Thanks!

Screenshot 2026-04-23 120811.png

5 answers to this question

Recommended Posts

  • 0
TonyLibra Rookie

TonyLibra

Posted
Posted

Maybe by default it's public, but afterwards you can adjust the folder within HexOS to be private and be selective on which users have access. It's not as in-depth as the TrueNAS access options, but for someone like me who isn't well-versed in ACL access, it's a lot easier to understand and navigate.

  • Like 1
  • 0
ColHomer Rookie

ColHomer

Posted
  • Author
Posted
1 hour ago, Todd Miller said:

Your not the first to ask and this post is not the first to bring it up.  So far there has been no response.

I thought I remember reading something like this awhile back and not seeing an explanation so this checks with what I remember.

  • 0
ColHomer Rookie

ColHomer

Posted
  • Author
Posted
1 hour ago, TonyLibra said:

Maybe by default it's public, but afterwards you can adjust the folder within HexOS to be private and be selective on which users have access. It's not as in-depth as the TrueNAS access options, but for someone like me who isn't well-versed in ACL access, it's a lot easier to understand and navigate.

Great point! I'll try and do some testing on this and see if that works.. The TrueNAS app install method does look to be a lot more granular with both access and folder creation.

  • 0
mill3000 Enthusiast

mill3000

Posted
Posted

Originally the reason for making all the apps a SambaShare was because sometimes users needed access to edit or change something in the apps directory. This is not something TrueNAS does but we were trying to make it easier for normal people who wouldn't know how to get into those folders and edit a file if they needed. It's still something we discuss if it's still something we need to do or maybe we should just hide it since we're on our way to building a whole apps system. 

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to question listing
×
×
  • Create New...