DSM-G600, DNS-3xx and NSA-220 Hack Forum

I've been playing around with some packages like transmission, lighttpd, php on my NAS (CH3SNAS) for a while now, and I'm starting to go towards opening up certain things to the internet. While doing that, I'm getting a bit concerned about security.
What I'd like to have is the following:
-Lighttpd and php in order to run the lightweight musicbrowser. ('security' done through auth module)
-Remote access to transmission/clutch (haven't been able to achieve this yet).
-Remote file access.
Next to this I'm also running MediaTomb, but I don't need (or want) remote access to that.

One thing I haven't found a solution for is file sharing. For example I'd like to be able to access certain files on the NAS through the internet. Up to now I've been using the built in FTP server for that, but I've read that this is actually a rather unsecure protocol. So I'm looking for an alternative.
I tried subversion, where the revisions and history would be a nice bonus (for code projects for example), but I couldn't really get it to work. I managed to create a repo by following this tutorial: http://dns323.kood.org/howto:subversion:fun_plug_native But I couldn't access it from outside the NAS (not to mention remote).

I'd like to hear your ideas about this.
Any general tips for security on the NAS which is (partially) exposed to the internet are welcome too of course
Thanks!

Last edited by Pjanssen (2009-01-12 22:14:34)