*** WARNING: This is a post aimed to newbies like me! ***
Hi there,
I just managed to successfully install Merlin's firmware (june 2018) to my AC68U and now the FTP feature works flawlessly. Thanks, Eric!
Firstly... I am a Windows user, sorry -not knowledgeable for Linux and the like.
I am a consultant and I have my office at home. In order to have my files available when I am at a client's office, at first I used to have a portable hard disk which was connected to the computer with the software SecondCopy syncing my PC's folders with this disk. Problem was that, as time passed, I often forgot to take it with me when leaving home -sounds familiar?
Then I started to leave my computer on all the time -which I don't like to do, for many reasons- so I could access it remotely. This basically resorted to Window's "security" (alas!) to protect it from intruders. Not a great move, I know.
On top of this, I used to have a shi**y Comtrend router provided as standard by a big telecom to its customers so no AiProtection tools (as in ASUS routers) or anything of that sort.
Most recently, I've come up with a compromise which I believe offers a much better protection and peace of mind for me and which is easy to setup so I thought about sharing it with other newbies here which, like me, might not be as proficient in IT as some other folks in the forum.
- I bought an ASUS RT-AC68U, which although a bit old now, it seems to be a decent piece of hardware for a reasonable price. Disabled WPS, remote WAN access, and so on, as recommended in the forum.
- I, however, activated Cloud Disk at the section Aicloud 2.0 and got an Asus DDNS (I know, I know!...) so I could access my data from wherever I need to. Then I have plugged a 2.5 HARDDISK to the USB3 AC68U router's port where I have my data (projects' files). I also thought about a VPN but I found it a bit confusing/complex to set up.
Since I have been quite concerned reading about the security flaws shown in ASUS firmware for many years (and other vendors!) I added an easy to setup "extra" layer of protection which gives me peace of mind: ENCRYPTION in my data.
MY APPROACH
There's a program called Boxcryptor -offered by a very reputable German company called Secomba GmbH- which I had been using for years. Btw, it's free for personal use. They're now in v2.x but I find v1.x easier (more portable) for the purpose I will describe hereafter. Note there is other similarly good encryption software out there: Tresorit, Veracrypt, TrueCrypt... I simply happen to have settled with this one.
- I setup Boxcryptor Classic (or v1.x) in my computer and I choose a folder to encrypt (say for example "C:\DOCS"). Once the folder is encrypted it creates a virtual disk (say "Z:") which loads on computer startup and which is the folder I need to access, and not the first one, to see and work with my (unencrypted) stuff. Easy peasy. Nothing more to it, the software automatically encrypts and decrypts. Within the folder, in the example (C:\DOCS\) Boxcryptor creates an XML file (which starts with a dot, as in ".encfs6.xml") which we'll later need.
- I have also a software called SecondCopy which allows me to sync folders within the same disk or different disks and also via FTP. I've set up a task to sync every hour or so, via an FTP connection, my ENCRYPTED C:\DOCS folder to the USB3 disk mentioned earlier which is connected to the ASUS AC68U router. The initial sync, if your data folder is large, can take a few hours, but then, subsequent syncing is a breeze. So... now I have a bunch of encrypted files available to me from anywhere in my open-to-the-world portable hard disk connected to my router.
- Obviously, and here the drawback, the files are encrypted so wherever I access them from will be unreadable/unusable. To solve this, I have a ccard-type USB in my wallet with a portable version of the Boxcryptor software (the classic version, that is 1.x!!!) which can be downloaded here https://forums.boxcryptor.com/topic/boxcryptor-classic-portable and -IMPORTANT!!!!- a copy of the XML file mentioned above. The ccard-type USBs, for those not knowing, are very convenient to carry with you: https://www.dhresource.com/0x0s/f2-...cheda-di-memoria-usb-scheda-usb-usb-flash.jpg and can be cheaply bought at many vendors both online and offline.
- Thus, from any computer anywhere in the world I can connect to my Asus DDNS (xxxxxx.asuscomm.com) with my credentials, remotely access the USB3 disk at my AC68U, download whatever ENCRYPTED file I need into my USB (or client's computer) and simply by executing the Portable Boxcryptor file -which is barely 2Mb and doesn't need to install anything into the client's computer- it automatically decrypts "on-the-fly" whatever I download. Note: the XML file needs to be in the same directory I download the file.
**Update**... maybe someone more knowledgeable can enlight us about this later news: https://www.theinquirer.net/inquirer/news/3012648/aes-256-encryption-keys-cracked-by-hands-off-hack
Thanks, I hope it can be helpful to someone.
All feedback welcome.
Last edited:
