• @[email protected]
    link
    fedilink
    311 months ago

    I think they were either computing crypto-hashes and passing on the results back home (via Tor), or they were using my machine to send out several ping/fetch requests over Tor to DDOS some unknown target machine.

    • @cheese_greater
      link
      211 months ago

      So can this pretty much always be shut down by having sufficiently complex + long pw?

      • @[email protected]
        link
        fedilink
        1
        edit-2
        11 months ago

        I want to say “yes” but you should still try to change the default ports for any process open to the web. Just because they can’t guess your ssh, doesn’t mean they can’t upload a root php script to your webserver which allows file uploads.

        Just be as invisible as possible. Run nmap on your localhost with the defaults and see if anything is set to open. If so, change that port.