DSM-G600, DNS-3xx and NSA-220 Hack Forum

Hi All,

I've just ordered a dns-323 which will arrive tomorrow along with 2 500GB SATA disks. Has anyone tried/managed to get crypto-loop working on this device? Ideally I'd like to to have a USB key with a key on it that must be inserted before you the device is decrypted so that if anyone ever walks off with the device (unlikely but anyway) they can't read the data without the key.

I'm assuming the process will be something like this:

   1 - Install Telnet
   2 - Install USB key support + place an encyption key on it
   3 - Partition the disks with a small unencrypted slice for fun_plug stuff and the main encrypted slice
   4 - See how the d-link internal software handles mirroring if there are more than 1 slice on each disk!
   5 - Compile and install crypto-loop and AES (or other)
   6 - insmod the modules, encrypt the disks & newfs (and dd random data over them)
   7 - Check if it works!
   8 - Write fun_plug to insmod the modules, and load daemon to listen for the usb key + mount the slices if key is present
   9 - Possibly implement auto re-mirroring if determined as needed in step 4.

As I haven't received my dns-323 yet I have no idea if this will work, but should be fun trying! Does anyone with dns-323 knowledge have any comments on the above or advice on things to watch out for? As I'll be trying to do it all through fun_plug I can't really brick the device as I can just wipe the disks in a pc and get it working again so I'm not too worried, plus if step 6 fails I can just reboot and get the system back to a working state.

Haydn.