Just wanted to say that I tried btsync and find it to be quite awesome in terms of usability. But I'm pretty horrified by the fact that btsync listens on 0.0.0.0 per default.
As suggested before I can only recommend setting it to 127.0.0.1. If you've got a NAS with SSH/CLI, you probably have the skills to change the listen address in a config or use the -L flag in SSH. This would be security/privacy first, which is, as I understand it, a main point of what btsync is about.
Using a mandatory password would be kind of ok as well I guess. Although I think a lot of people will just enter the "I'll change that later for sure"-value and forget about it.
security hole in Linux WebUI makes all your files publicly accessible
in Sync General Discussion
Posted
Heya everyone
Just wanted to say that I tried btsync and find it to be quite awesome in terms of usability. But I'm pretty horrified by the fact that btsync listens on 0.0.0.0 per default.
As suggested before I can only recommend setting it to 127.0.0.1. If you've got a NAS with SSH/CLI, you probably have the skills to change the listen address in a config or use the -L flag in SSH. This would be security/privacy first, which is, as I understand it, a main point of what btsync is about.
Using a mandatory password would be kind of ok as well I guess. Although I think a lot of people will just enter the "I'll change that later for sure"-value and forget about it.