zlacker

[return to "I got hacked: My Hetzner server started mining Monero"]
1. j45+z6[view] [source] 2025-12-17 21:47:02
>>jakels+(OP)
Never expose your server IP directly to the internet, vps or baremetal.
◧◩
2. sergso+Ci[view] [source] 2025-12-17 22:56:04
>>j45+z6
Not expose the server IP is one practice (obfuscation) in a list of several options.

But that alone would not solve the problem being a RCE from HTTP, that is why edge proxy provider like Cloudflare[0] and Fastfy[1] proactivily added protections in his WAF products.

Even cloudflare had an outage trying to protect his customers[3].

- [0] https://blog.cloudflare.com/waf-rules-react-vulnerability/ - [1] https://www.fastly.com/blog/fastlys-proactive-protection-cri... - [2] https://blog.cloudflare.com/5-december-2025-outage/

◧◩◪
3. j45+p5e[view] [source] 2025-12-22 22:08:27
>>sergso+Ci
No provider is perfect - It's totally possible to run your own FW behind it, or run CF Tunnel on a separate container that routes traffic to individual application containers using something like traefik, nginx proxy manager, etc.
[go to top]