this post was submitted on 17 Apr 2024
79 points (97.6% liked)

Cybersecurity

5763 readers
226 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 28 points 7 months ago (2 children)

Anybody who’s ever exposed any service to the internet knows this as the “background radiation” of the net. My boxes get thousands of random connection attempts per day. The best practice for years has been to use keypairs and/or VPNs. Friends don’t let friends expose RDP to the web.

[–] [email protected] 12 points 7 months ago

I had a little linux server years ago and after a setup forgot to change my SSH port. One day I noticed my network was slow and after poking around realized that I had someone knocking at my port trying pass after pass with like 15 - 30 sec between attempts, watched this person for 2 days laughing at the 8-10 char passwords they were using, my password was a sentence. I then shifted the port to the 30k range and all was silent on my ports, always remember to change default ports, fun times

[–] [email protected] 3 points 7 months ago

I had a website exposed to the net and would constantly get http requests for things like “wordpress_admin.js”