How secure is Apple File Protocol from Airport Extreme

security afp airport bonjour

How secure is the file sharing feature for use over WAN on an Airport Extreme? i.e. Are the content and/or passwords encrypted when accessed over the Internet?


Solution 1:

AFP (Apple Filing protocol) is unencrypted for the most part. Authentication is the only place where encryption is used, and it is negotiated between client & server. I believe that the Airport Extreme offers DHCAST128 and DHX2 UAMs (User Authentication Methods), both of which encrypt the user's password with CAST-128 (they differ in how they come up with the key used to do the encryption, DHX2 is better).

AFP with either of the above UAMs is susceptible to Man in the Middle attacks and I would not recommend it for use over the Internet. AFP can be tunneled through SSH for better security, but I don't think the Airport Extreme supports that usage.

Related

Sharing internet connection from ethernet to wifi NOT using apple sharing
Looking for a manga reader for the original iPad hardware
Why can't I see my Numbers spreadsheets on my new iPhone?
How can I access the remote clipboard when Screen Sharing into a Linux system
Can I use my iphone charger to charge my kindle?
How can I delete an individual photo from my photostream? [duplicate]
What is the shortcut for fullscreen mode in Lion?
How do I copy the name of the song currently playing on an internet radio station in iTunes?
What is the difference in resolution and quality between SCART, VGA, and HDMI?
Why might my mac be running extremely slowly at times?
iMovie cannot load Sony-MPEG videos
Only seeing ONE of two external HD's plugged into Apple Airport Extreme