locked
How secure is remote access with WHS? RRS feed

  • Question

  • Is my home network (includes 3 PCs + WHS) secure if I enable remote access on WHS and open port 80 on my router?

    Thanks.

    Wednesday, January 27, 2010 4:06 AM

Answers

  • Anything you do beyond visiting the initial server home page uses a Secure Sockets Layer (SSL) connection. So the communication channel is secure.
    I'm not on the WHS team, I just post a lot. :)
    Wednesday, January 27, 2010 4:11 AM
    Moderator
  • With port 80 alone you cannot access WHS remotely, you will also need port 443 (https) and 4125, if you want to access the WHS console via Remote Access. (You could even leave port 80 away and use only https.)
    About safety - as long as your home server is up to date with its patch level, so that it can survive break in attempts via known vulneribilities, the risk is low. Adding a WHS aware virus scanner can also help.
    In any case, as long as your WHS hasn't been taken over, your home network is as secure as without enabling the port forwarding for remote access.
    I only recommend to ensure, that automated configuration of your router via UPnP is disabled on your router. While this simplifies the reconfiguration in case of changed IP address of WHS you open also a chance for malware on any of your PCs to open much bigger holes.
    Best greetings from Germany
    Olaf
    Wednesday, January 27, 2010 9:23 AM
    Moderator

All replies

  • Anything you do beyond visiting the initial server home page uses a Secure Sockets Layer (SSL) connection. So the communication channel is secure.
    I'm not on the WHS team, I just post a lot. :)
    Wednesday, January 27, 2010 4:11 AM
    Moderator
  • With port 80 alone you cannot access WHS remotely, you will also need port 443 (https) and 4125, if you want to access the WHS console via Remote Access. (You could even leave port 80 away and use only https.)
    About safety - as long as your home server is up to date with its patch level, so that it can survive break in attempts via known vulneribilities, the risk is low. Adding a WHS aware virus scanner can also help.
    In any case, as long as your WHS hasn't been taken over, your home network is as secure as without enabling the port forwarding for remote access.
    I only recommend to ensure, that automated configuration of your router via UPnP is disabled on your router. While this simplifies the reconfiguration in case of changed IP address of WHS you open also a chance for malware on any of your PCs to open much bigger holes.
    Best greetings from Germany
    Olaf
    Wednesday, January 27, 2010 9:23 AM
    Moderator