zlacker

[return to "I got hacked: My Hetzner server started mining Monero"]
1. danpar+Gj[view] [source] 2025-12-17 23:02:50
>>jakels+(OP)
No firewall! Wow that's brave. Hetzner will let you configure one that runs outside of the box so you might want to add that too, as part of your defense in depth - that will cover you if you make a mistake with ufw. Personally I keep SSH firewalled only to my home address in this way; if I'm out and about and need access, I can just log into Hetzner's website and change it temporarily.
◧◩
2. jwrall+hs[view] [source] 2025-12-18 00:04:09
>>danpar+Gj
Password auth being enabled is also very brave. I don’t think fail2ban is necessary personally, but it’s popular enough that it always come up.
[go to top]