Comment on What's the security situation when opening a jellyfin server up for casting?
aichan@piefed.blahaj.zone 2 months agoMissconfigurations allowing bots and shit hacking you. Overblown paranoia mostly if you just take some precautions
Comment on What's the security situation when opening a jellyfin server up for casting?
aichan@piefed.blahaj.zone 2 months agoMissconfigurations allowing bots and shit hacking you. Overblown paranoia mostly if you just take some precautions
diegantobass@lemmy.world 2 months ago
Okay thanks for mentionning overblown paranoia, that’s what I have.
What kind of exploitable server misconfigurations are we talking about here?? Brute forcing won’t work because fail2ban, right? I’m a noob and deep down I’m convinced that my homeserver is compromised and has beenpart of a bitcoin mining farm for years… Yet, not a single proof…
irmadlad@lemmy.world 2 months ago
The very first Linux server I deployed on a VPS was hacked almost immediately because of my ignorance. The bot gained entrance, and they supplanted a miner rig. Now, on a tiny VPS, it’s pretty easy to tell if you’re running a coin miner because all of the resources will be pegged. However, I got to thinking, on a corporate server, if they did manage to do this, it would almost be undetectable until someone started reviewing logs.
Ricaz@lemmy.dbzer0.com 2 months ago
Corporate servers will usually have some degree of SIEM implemented, and at least audit log monitoring.
GraveyardOrbit@lemmy.zip 2 months ago
diegantobass@lemmy.world 2 months ago
Aren’t zero day very specific? Or maybe it’s become a very generic term.
Anyway, I am under the impression that either it’s suddenly very simple to hack into EVERYONE because someone zero dayed the wireguard protocol and there a major flow in it, it’s a shitshow, for all, for some, just me or nobody, whatever. Or it’s a very targeted attack on me personaly, and that’s a whole other story and the means to protect my pictures of my cats and my cool public domain movies collection are different (think social engineering). Also port 22 being bombarded by brute force attempts so don’t choose a password that’s 6 letters thanks.
I KNOW I am missing many things, but still, I don’t get it.
GraveyardOrbit@lemmy.zip 2 months ago