Are you not actually open to the public internet? Is it running on a nonstandard port? Is it already pwned and something is scrubbing logs?
Comment on What's the security situation when opening a jellyfin server up for casting?
diegantobass@lemmy.world 6 days agoQuick question: If I look through the ssh log and I don’t see the hundred of attempts, what could be going on?..
teawrecks@sopuli.xyz 6 days ago
diegantobass@lemmy.world 6 days ago
Non standard port. But aren’t secret chinese hack farm scanning wider than just 22 ? I don’t know and deep down believe that it’s pawned and scrubbing logs.
teawrecks@sopuli.xyz 6 days ago
The resources required to port scan every port on every IP is generally not worth it. AFAIK they tend to stick to lower ports or popular ports. Unless they’re intentionally targeting a specific IP or IP range, they’re just looking for low hanging fruit.
diegantobass@lemmy.world 6 days ago
Low hanging fruits are, in my personal case, pictures of my cats and public domain cultural artefacts.
Industrializing hacking of random servers sounds like a shitty idea at the end of the day…
GreenCrunch@piefed.blahaj.zone 6 days ago
I am not sure lol. perhaps your ssh port isn’t exposed to the internet, or maybe the bots are just ignoring you? maybe your hosting provider has some sort of security process to reject those attempts preemptively?
I have no clue
diegantobass@lemmy.world 6 days ago
Ignoring ? Nah someone mentionned my ISP might be protecting me uphill.