Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




335 posts

Ultimate Geek

Trusted

#153622 3-Oct-2014 07:37
Send private message

I have noticed numerous and ongoing attempts by overseas ip addresses to login to my NAS. 
They fail and are blocked after two repeated attempts, but wonder if this is me specific or do others notice this activitiy?



Filter this topic showing only the reply marked as answer Create new topic
19282 posts

Uber Geek
Inactive user


  #1146261 3-Oct-2014 08:19
Send private message

Setup a honey pot and see what they are trying to do

2213 posts

Uber Geek

Subscriber

  #1146270 3-Oct-2014 08:30
Send private message

Turned remote access off on my WD Mybooklive because of the shellshock threat.

 
 
 
 


16230 posts

Uber Geek

Trusted
Subscriber

  #1146272 3-Oct-2014 08:34
Send private message

It's expected that every machine on the internet will be probed or attacked more or less constantly. Your options are:
 - Make sure to keep it up to date with the latest software, and use a strong username and password. I would be surprised if there were no vulnerabilities in the software though.
 - Disable remote access.



335 posts

Ultimate Geek

Trusted

  #1146273 3-Oct-2014 08:35
Send private message

linw: Turned remote access off on my WD Mybooklive because of the shellshock threat.


I've done the same with sftp now.

The people I share with can just use Plex. 






335 posts

Ultimate Geek

Trusted

  #1146276 3-Oct-2014 08:42
Send private message

timmmay: It's expected that every machine on the internet will be probed or attacked more or less constantly. Your options are:
 - Make sure to keep it up to date with the latest software, and use a strong username and password. I would be surprised if there were no vulnerabilities in the software though.
 - Disable remote access.


A trusted friend had ftp access to it, but after reading about Shellshock and NAS exploit possibilities, I checked the logs as was surprised what I saw. No one has gained access, but just more aware now. 

4570 posts

Uber Geek

Trusted

  #1146278 3-Oct-2014 08:45
Send private message

Why do you have SSH exposed?!

I can understand SFTP but with that surely SSH isn't required.



335 posts

Ultimate Geek

Trusted

  #1146288 3-Oct-2014 09:14
Send private message

chevrolux: Why do you have SSH exposed?!

I can understand SFTP but with that surely SSH isn't required.


We just turned on the sftp. There was no setting  re ssh other than it advising it used the same port as it would. 

Have turned it off as it is a little beyond me at this stage. 

 
 
 
 


BTR

1522 posts

Uber Geek


  #1146312 3-Oct-2014 09:39
Send private message

I would have as little as possible available externally if I was you, I have all external access to my servers disabled. If I want access I will use VPN.



3344 posts

Uber Geek

Trusted
Vocus

  #1146335 3-Oct-2014 09:55
Send private message

If you must expose a service externally, use a high port (something over 10000) which should help you avoid the bulk of scanning.  This of course does not obviate the need for strong password/cert authentication, keeping things up to date etc.

2272 posts

Uber Geek

Trusted

  #1146340 3-Oct-2014 09:59
Send private message

This is as normal as normal can get.  If you're on the Internet with a public IP and NOT getting random bots trying to login to every common public service, something's wrong with your Internet connection.




I hate you.


Filter this topic showing only the reply marked as answer Create new topic




News »

Pre-orders for Huawei MateBook 13 open now
Posted 14-Aug-2020 14:26


Freeview On Demand app launches on Sony Android TVs
Posted 6-Aug-2020 13:35


UFB hits more than one million connections
Posted 6-Aug-2020 09:42


D-Link A/NZ extends COVR Wi-Fi EasyMesh System series with new three-pack
Posted 4-Aug-2020 15:01


New Zealand software Rfider tracks coffee from Colombia all the way to New Zealand businesses
Posted 3-Aug-2020 10:35


Logitech G launches Pro X Wireless gaming headset
Posted 3-Aug-2020 10:21


Sony Alpha 7S III provides supreme imaging performance
Posted 3-Aug-2020 10:11


Sony introduces first CFexpress Type A memory card
Posted 3-Aug-2020 10:05


Marsello acquires Goody consolidating online and in-store marketing position
Posted 30-Jul-2020 16:26


Fonterra first major customer for Microsoft's New Zealand datacentre
Posted 30-Jul-2020 08:07


Everything we learnt at the IBM Cloud Forum 2020
Posted 29-Jul-2020 14:45


Dropbox launches native HelloSign workflow and data residency in Australia
Posted 29-Jul-2020 12:48


Spark launches 5G in Palmerston North
Posted 29-Jul-2020 09:50


Lenovo brings speed and smarter features to new 5G mobile gaming phone
Posted 28-Jul-2020 22:00


Withings raises $60 million to enable bridge between patients and healthcare
Posted 28-Jul-2020 21:51



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.