poVoq@slrpnk.net 4 months ago
This is nonsense. A small static website is not going to be hacked or DDOSd. You can run it off a cheap ARM single board computer on your desk, no problem at all.
poVoq@slrpnk.net 4 months ago
This is nonsense. A small static website is not going to be hacked or DDOSd. You can run it off a cheap ARM single board computer on your desk, no problem at all.
BearOfaTime@lemm.ee 4 months ago
What?
I’ve popped up a web server and within a day had so many hits on the router (thousands per minute) that performance tanked.
Yea, no, any exposed service will get hammered. Frankly I’m surprised that machine I setup didn’t get hacked.
poVoq@slrpnk.net 4 months ago
Don’t leave SSH on port 22 open as there are a lot of crawlers for that, otherwise I really can’t say I share your experience, and I have been self-hosting for years.
jjlinux@lemmy.ml 4 months ago
Am I missing something? Why would anyone leave SSH open outside the internal network?
All of my services have SSH disabled unless I need to do something, and then I only do it locally, and disable as soon as I’m done.
Note that I don’t have a VPS anywhere.
MigratingtoLemmy@lemmy.world 4 months ago
How do you reach into your server with SSH disabled without lugging a monitor and keyboard around?
poVoq@slrpnk.net 4 months ago
Some people want to be able to reach their server via SSH when they are not at home, but yes I agree in general that is not necessary when running a real home server.
Count042@lemmy.ml 4 months ago
I’ve been self-hosting a bunch of stuff for over a decade now, and have not had that issue.
Except for a matrix server with open registration for a community that others not in the community started to use.
Auli@lemmy.ca 4 months ago
Yes my biggest mistake was leaving a vps dns server wide open. It took months for it to get abused though.
Oisteink@feddit.nl 4 months ago
Lol
Omgboom@lemmy.zip 4 months ago
You left stuff exposed is the only explanation. I’ve had services running for years without a problem
possiblylinux127@lemmy.zip 4 months ago
What class of IP was it?
MangoPenguin@lemmy.blahaj.zone 4 months ago
I can’t say I’ve seen anything like that on the webservers I’ve exposed to the internet. But it could vary based on the IP you have if it’s a target for something already I suppose.