[aborsy]

I am surprised you didn’t find security to be a key issue with network attached storage.

* Physical security. On 1, in case you have a synology NAS, it does not offer full disk encryption. Its folder encryption also has a number of problems. Your mitigation here (back ups) doesn’t help with loss of data to others.

* Network security. In addition to the physical security, consumer NAS devices don’t do enough in network security. Some of them come with closed source operating systems with a lot of potentially dangerous sharing and networking features. The code is often not reviewed.

On 2., you can use ZFS or btrfs, and they offer good features, but come with separate set of problems.

I spent some time on NAS security and couldn’t find a good solution. I thought I better let Amazon and google to secure my data.

[ardourdev]

Regarding comsumer NASs having poor security, I completely agree, however it wasn't too relevant to my personal threat model. Backups of my computers (which could potentially compromise credentials) are encrypted before they go on the NAS, and if I needed to sync anything sensitive it would be encrypted locally.

Using my NAS for sharing photos and files with family/friends opens up security holes that encryption at rest wouldn't help with, and I accept the tradeoff of potentially leaking data. What is less acceptable to me is any risk of data loss.